Online SHA384 Hash Generator

• I have build a FIPS capable openssl library.
• Openssl Version 1.0.2t and FIPS object module 2.0.16.
• I was reading the user guide for FIPS object module which told that the last step in building a program with FIPS capable openssl was to use fipsld to link my program with openssl rather than gcc/ld as it computes sha1sum of fipscansiter.o using fipsprelim.c.
• After this I need to call FIPS_mode_set(1) which enables fips mode.
• This works if I am generating a executable. But in my project we provide a static library to our customers and we resolve all dependencies at our end, so we unpack libcrypto.a using ar x libcrypto.a and add all the openssl object files to our static library libapi.a.
• There is one class(API_DigitalSignature.cpp) which is build as a wrapper around openssl api for digital signature.

Now the problem is I am confused on how should I use fipsld in my project because I am not generating a program but rather just an archive?

Also I clarified with some security persons that unpacking libcrypto.a doesn't affect FIPS validation unless we are changing any ciphers.

I hope you know what Firebase is, or have heard about it. In firebase, when I register my application, it requests a sha1 fingerprint for my application, uses it to identify my application, and if my Android application is signed with the same key (for example, release), then it approves access in another case rejects. I want to create a similar authorization system that will allow access only for a signed Android application, in case someone tries to make an HTTP request to my API, the system must deny access.

var secure;var authentic;secure = prompt("Enter password","");alert(secure);var c1 = CryptoJS.SHA256(secure);alert(c1);authentic = prompt("Enter password","");alert(authentic);var c2=CryptoJS.SHA256(authentic);alert(c2);if(c1==c2){    alert("hi");}else{    alert("bye");}

I use the script "http://crypto-js.googlecode.com/svn/tags/3.1.2/build/rollups/sha256.js"

EXPLANATION: What, I'm trying to do is to compare hashed passwords.If both the passwords entered (secure and authentic) that have been hashed (c1 and c2 respectively) are equal, It must display 'hi' to me. But I find that it displays 'bye' to me always.

PROBLEM: When I compare c1 and c2, the result I get always is 'bye', though the values of c1 and c2 are the same when I display them using the alert box.

I'm kinda new to hashing. A li'l help would be much appreciated!

I'm trying to configure my script to use ogone payment gatewayi've assigned a pass phrase let's say e.g: abcd1234so the code that will be hased is

$sh = "AMOUNT=5000abcd1234CURRENCY=USDabcd1234LANGUAGE=en_USabcd1234ORDERID=1122abcd1234PSPID=MyIDabcd1234";

and i'm using this form

<FORM METHOD="post" ACTION="https://secure.ogone.com/ncol/test/orderstandard.asp" id="form1" name="form1"><INPUT type="hidden" NAME="PSPID" value="MyID"><INPUT type="hidden" NAME="ORDERID" value="1122"><INPUT type="hidden" NAME="AMOUNT" value="5000"><INPUT type="hidden" NAME="CURRENCY" value="USD"><INPUT type="hidden" NAME="LANGUAGE" value="en_US"><INPUT type="hidden" NAME="SHASIGN" value="<?php echo $sh; ?>"><input type="submit" value="Your button lib" id="submit2" name="submit2"></form>

after adjusting the referrer URL of this webpage i get this error unknown order/0/s/Any idea please?

Below is my JAVA code, I am trying to encode string into SHA1 encoding but i am getting below Error.

java.io.UnsupportedEncodingException: UTF­8

at java.lang.StringCoding.encode(StringCoding.java:341) at java.lang.String.getBytes(String.java:918) at sample.SHAEncoding.getSHA(SHAEncoding.java:20) at sample.SHAEncoding.main(SHAEncoding.java:34)

import java.security.MessageDigest;public class SHAEncoding {    private static char[] hexits = "0123456789ABCDEF".toCharArray();    public static String getSHA(String data) throws Exception {    MessageDigest md = null;    byte[] ba = null;    md = MessageDigest.getInstance("SHA");    md.update(data.getBytes("UTF­8"));    ba = md.digest();    StringBuffer sb = new StringBuffer(ba.length * 2);    for (int i = 0; i < ba.length; i++) {        sb.append(hexits[(((int) ba[i] & 0xFF) / 16) & 0x0F]);        sb.append(hexits[((int) ba[i] & 0xFF) % 16]);    }    return sb.toString();}public static void main(String args[]){    String SessionID = "2K6VB0UAZV33C5KTKXDV";    try{        String PIN = getSHA(SessionID + getSHA("xyz"+"1234").toLowerCase()).toUpperCase();        System.out.println("PIN ===>>> "+PIN);       }catch(Exception e){        e.printStackTrace();       } }}