logincrypto.java

冒险岛私服Java版服务端(Odinms)源代码。学习JAVA开发的朋友

package net.sf.odinms.client;

import java.io.UnsupportedEncodingException;
import java.security.MessageDigest;
import java.security.NoSuchAlgorithmException;

import org.slf4j.Logger;
import org.slf4j.LoggerFactory;

import net.sf.odinms.tools.HexTool;

/**
 * Provides cryptographic functions for password hashing.
 * 
 * @author Nol888
 * @version 0.1
 */
public class LoginCrypto {
	private static Logger log = LoggerFactory.getLogger(LoginCrypto.class);

	/**
	 * Map of 6 bit nibbles to base64 characters.
	 */
	private static char[] iota64 = new char[64];
	static {
		int i = 0;
		iota64[i++] = '.';
		iota64[i++] = '/';
		for (char c = 'A'; c <= 'Z'; c++)
			iota64[i++] = c;
		for (char c = 'a'; c <= 'z'; c++)
			iota64[i++] = c;
		for (char c = '0'; c <= '9'; c++)
			iota64[i++] = c;
	}

	/**
	 * Class Constructor. Static class, so it's a dummy constructor.
	 */
	private LoginCrypto() {
	}

	/**
	 * Hash the password for first time storage.
	 * 
	 * @param password The password to be hashed.
	 * @return String of the hashed password.
	 */
	public static String hashPassword(String password) {
		byte[] randomBytes = new byte[6];

		java.util.Random randomGenerator = new java.util.Random();
		randomGenerator.nextBytes(randomBytes);

		return myCrypt(password, genSalt(randomBytes));
	}

	/**
	 * Check a password against a hash.
	 * 
	 * @param password The password to validate.
	 * @param hash The hash to validate against.
	 * @return <code>true</code> if the password is correct, <code>false</code> otherwise.
	 */
	public static boolean checkPassword(String password, String hash) {
		if (!hash.substring(0, 3).equals("$H$")) { // Old-style SHA1 hash.
			try {
				MessageDigest Digester = MessageDigest.getInstance("SHA-1");
				Digester.update(password.getBytes("iso-8859-1"), 0, password.length());
				byte[] SHA1Hash = Digester.digest();
				String SHA1HexString = HexTool.toString(SHA1Hash).replace(" ", "").toLowerCase();
				return SHA1HexString.equals(hash);
			} catch (NoSuchAlgorithmException Ex) {
				log.error("Error checking password hash.", Ex);
			} catch (UnsupportedEncodingException Ex) {
				log.error("Error checking password hash.", Ex);
			}
		}
		return (myCrypt(password, hash).equals(hash)) ? true : false;
	}

	/**
	 * Check if a hash needs to be rehashed, that is, it's an old SHA1 hash.
	 * 
	 * @param hash
	 * @return <code>true</code> if it needs to be rehashed, <code>false</code> otherwise.
	 */
	public static boolean needsRehash(String hash) {
		return !hash.substring(0, 3).equals("$H$");
	}

	/**
	 * Encrypt a string with <code>Seed</code> as a seed code.
	 * 
	 * @param password Password to encrypt.
	 * @param seed Seed to use.
	 * @return The salted SHA1 hash of password.
	 * @throws RuntimeException
	 */
	private static String myCrypt(String password, String seed) throws RuntimeException {
		String out = null;
		int count = 8;
		MessageDigest digester;

		// Check for correct Seed
		if (!seed.substring(0, 3).equals("$H$")) {
			// Oh noes! Generate a seed and continue.
			byte[] randomBytes = new byte[6];
			java.util.Random randomGenerator = new java.util.Random();
			randomGenerator.nextBytes(randomBytes);
			seed = genSalt(randomBytes);
		}

		String salt = seed.substring(4, 12);
		if (salt.length() != 8) {
			throw new RuntimeException("Error hashing password - Invalid seed.");
		}

		byte[] SHA1Hash = new byte[40];
		try {
			digester = MessageDigest.getInstance("SHA-1");

			digester.update((salt + password).getBytes("iso-8859-1"), 0, (salt + password).length());
			SHA1Hash = digester.digest();
			do {
				byte[] CombinedBytes = new byte[SHA1Hash.length + password.length()];
				System.arraycopy(SHA1Hash, 0, CombinedBytes, 0, SHA1Hash.length);
				System.arraycopy(password.getBytes("iso-8859-1"), 0, CombinedBytes, SHA1Hash.length, password.getBytes("iso-8859-1").length);
				digester.update(CombinedBytes, 0, CombinedBytes.length);
				SHA1Hash = digester.digest();
			} while (--count > 0);
			out = seed.substring(0, 12);
			out += encode64(SHA1Hash);
		} catch (NoSuchAlgorithmException Ex) {
			log.error("Error hashing password.", Ex);
		} catch (UnsupportedEncodingException Ex) {
			log.error("Error hashing password.", Ex);
		}
		if (out == null) {
			throw new RuntimeException("Error hashing password - out = null");
		}

		return out;
	}

	/**
	 * Generates a salt string from random bytes <code>Random</code>
	 * 
	 * @param Random Random bytes to get salt from.
	 * @return Salt string.
	 */
	private static String genSalt(byte[] Random) {
		String Salt = "$H$";
		Salt += iota64[30];
		Salt += encode64(Random);
		return Salt;
	}

	/**
	 * Encodes a byte array into base64.
	 * 
	 * @param Input Array of bytes to put into base64.
	 * @return String of base64.
	 */
	private static String encode64(byte[] Input) {
		int iLen = Input.length;

		int oDataLen = (iLen * 4 + 2) / 3; // output length without padding
		int oLen = ((iLen + 2) / 3) * 4; // output length including
		// padding
		char[] out = new char[oLen];
		int ip = 0;
		int op = 0;
		while (ip < iLen) {
			int i0 = Input[ip++] & 0xff;
			int i1 = ip < iLen ? Input[ip++] & 0xff : 0;
			int i2 = ip < iLen ? Input[ip++] & 0xff : 0;
			int o0 = i0 >>> 2;
			int o1 = ((i0 & 3) << 4) | (i1 >>> 4);
			int o2 = ((i1 & 0xf) << 2) | (i2 >>> 6);
			int o3 = i2 & 0x3F;
			out[op++] = iota64[o0];
			out[op++] = iota64[o1];
			out[op] = op < oDataLen ? iota64[o2] : '=';
			op++;
			out[op] = op < oDataLen ? iota64[o3] : '=';
			op++;
		}
		return new String(out);
	}

}