how to generate bcrypt 2a variation hash instead of 2y?

You haven't mentioned your use case, but generally, if it's a modern htpasswd implementation, it's generating a $2a$-compatible hash (null-terminated, UTF-8 encoded), even though it's using $2y$ to label the variant.

In other words, you could probably literally replace the 2y with 2a, and it should work.

This StackOverflow answer goes into more detail:

There is no difference between 2a, 2x, 2y, and 2b. If you wrote your implementation correctly, they all output the same result.

All of the pre-modern variants are rooted in buggy implementations - either in OpenBSD, or in PHP's crypt_blowfish. If you're working with any modern platform, the hash formats should now be interchangeable.

If you actually need to generate one of the pre-modern (buggy) hashes, you'll have to find an implementation from before the bug was fixed.

Related videos on Youtube

11 : 10

What's the Best Hashing Algorithm for Storing Passwords?

Big Machine

407

15 : 44

Hashing passwords with Python and Bcrypt

Julian Nash

37

10 : 11

Express (NodeJS) - Hashing and storing passwords with Bcrypt and SQL

Vuka

13

17 : 55

Bcrypt Tutorial in Nodejs | Understand Hashing, Salt, Rainbow Tables and Bcrypt

Coding With Chaim

7

01 : 33

Unix & Linux: How to generate bcrypt 2a variation hash instead of 2y?

Roel Van de Paar

6

Author by

Bateman

Updated on September 18, 2022