Home/ Questions/Q 8413313
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-06-10T00:53:51+00:00

I use Crypto-JS v2.5.3 (hmac.min.js) http://code.google.com/p/crypto-js/ library to calculate client side hash and the

  • 0

I use Crypto-JS v2.5.3 (hmac.min.js) http://code.google.com/p/crypto-js/ library to calculate client side hash and the script is:

$("#PasswordHash").val(Crypto.HMAC(Crypto.SHA256, $("#pwd").val(), $("#PasswordSalt").val(), { asByte: true }));

this return something like this: 

b3626b28c57ea7097b6107933c6e1f24f586cca63c00d9252d231c715d42e272

Then in Server side I use the following code to calculate hash:

private string CalcHash(string PlainText, string Salt) {
        string result = "";
        ASCIIEncoding enc = new ASCIIEncoding();
        byte[]
        baText2BeHashed = enc.GetBytes(PlainText),
        baSalt = enc.GetBytes(Salt);
        System.Security.Cryptography.HMACSHA256 hasher = new HMACSHA256(baSalt);
        byte[] baHashedText = hasher.ComputeHash(baText2BeHashed);
        result = string.Join("", baHashedText.ToList().Select(b => b.ToString("x")).ToArray());
        return result;
    }

and this method returned:

b3626b28c57ea797b617933c6e1f24f586cca63c0d9252d231c715d42e272

As you see there is just some zero characters that the server side method ignore that. where is the problem? is there any fault with my server side method? I just need this two value be same with equal string and salt.

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    As you see there is just some zero characters that the server side method ignore that. where is the problem?

    Here – your conversion to hex in C#:

    b => b.ToString("x")

    If b is 10, that will just give “a” rather than “0a”.

    Personally I’d suggest a simpler hex conversion:

    return BitConverter.ToString(baHashedText).Replace("-", "").ToLowerInvariant();

    (You could just change "x" to "x2" instead, to specify a length of 2 characters, but it’s still a somewhat roundabout way of performing a bytes-to-hex conversion.)

    • 0