How to call Oracle MD5 hash function?

Question

I have below code. I am using Oracle 11g.

SELECT DBMS_OBFUSCATION_TOOLKIT.md5 (input => UTL_RAW.cast_to_raw(
  FIRST_NAME
  ||LAST_NAME
  )) md5_key ,
  FIRST_NAME ,
  LAST_NAME
FROM C_NAME_TAB
WHERE PKEY='1234'

How can i call this code? Can i directly execute this code in sqldeveloper?

score 41 · Answer 1 · edited Nov 22 '16 at 23:38

41

In Oracle 12c you can use the function STANDARD_HASH. It does not require any additional privileges.

select standard_hash('foo', 'MD5') from dual;

The dbms_obfuscation_toolkit is deprecated (see Note here). You can use DBMS_CRYPTO directly:

select rawtohex(
    DBMS_CRYPTO.Hash (
        UTL_I18N.STRING_TO_RAW ('foo', 'AL32UTF8'),
        2)
    ) from dual;

Output:

ACBD18DB4CC2F85CEDEF654FCCC4A4D8

Add a lower function call if needed. More on DBMS_CRYPTO.

edited Nov 22 '16 at 23:38

Jon Heller

34,999
6
74
132

answered Mar 20 '14 at 13:42

tbone

15,107
3
33
40

Is there a way to decrypt this key? – ZerOne Jul 16 '15 at 09:52
2

@ZerOne no, its a one-way hash. See [here](http://docs.oracle.com/cd/B28359_01/appdev.111/b28419/d_crypto.htm#i1003350) for more – tbone Jul 16 '15 at 13:00
1

As standard_hash is callable only in a SQL statement, the maximum size of data that can be hashed is 4000 bytes. Anything longer than that will still require dbms_crypto. – Jared Still Jan 11 '21 at 23:39

score 5 · Answer 2 · answered Nov 22 '16 at 23:24

5

I would do:

select DBMS_CRYPTO.HASH(rawtohex('foo') ,2) from dual;

output:

DBMS_CRYPTO.HASH(RAWTOHEX('FOO'),2)
--------------------------------------------------------------------------------
ACBD18DB4CC2F85CEDEF654FCCC4A4D8

answered Nov 22 '16 at 23:24

James Ding

313
5
7

Please note, [DBMS_CRYPTO](https://docs.oracle.com/en/database/oracle/oracle-database/21/arpls/DBMS_CRYPTO.html) may not always be available, see [Oracle 11g DBMS_CRYPTO invalid identifier](https://dba.stackexchange.com/a/98109/180926). – ckujau Jan 05 '22 at 16:59

score 4 · Answer 3 · answered Jan 26 '17 at 18:03

@user755806 I do not believe that your question was answered. I took your code but used the 'foo' example string, added a lower function and also found the length of the hash returned. In sqlplus or Oracle's sql developer Java database client you can use this to call the md5sum of a value. The column formats clean up the presentation.

column hash_key format a34;
column hash_key_len format 999999;
select dbms_obfuscation_toolkit.md5(
          input => UTL_RAW.cast_to_raw('foo')) as hash_key,
       length(dbms_obfuscation_toolkit.md5(
          input => UTL_RAW.cast_to_raw('foo'))) as hash_key_len
 from dual;

The result set

HASH_KEY                           HASH_KEY_LEN
---------------------------------- ------------
acbd18db4cc2f85cedef654fccc4a4d8             32

is the same value that is returned from a Linux md5sum command.

echo -n foo | md5sum
acbd18db4cc2f85cedef654fccc4a4d8  -

Yes you can call or execute the sql statement directly in sqlplus or sql developer. I tested the sql statement in both clients against 11g.
You can use any C, C#, Java or other programming language that can send a statement to the database. It is the database on the other end of the call that needs to be able to understand the sql statement. In the case of 11 g, the code will work.
@tbone provides an excellent warning about the deprecation of the dbms_obfuscation_toolkit. However, that does not mean your code is unusable in 12c. It will work but you will want to eventually switch to dbms_crypto package. dbms_crypto is not available in my version of 11g.

The question pertained to oracle 11g and you are right, the question was not answered for 11g. I was also looking for a solution as of 11g. This solution worked for me, thanks a lot. — Mocking, Apr 13 '18 at 21:36

score 1 · Answer 4 · answered Apr 26 '17 at 17:20

To calculate MD5 hash of CLOB content field with my desired encoding without implicitly recoding content to AL32UTF8, I've used this code:

create or replace function clob2blob(AClob CLOB) return BLOB is
  Result BLOB;
  o1 integer;
  o2 integer;
  c integer;
  w integer;
begin
  o1 := 1;
  o2 := 1;
  c := 0;
  w := 0;
  DBMS_LOB.CreateTemporary(Result, true);
  DBMS_LOB.ConvertToBlob(Result, AClob, length(AClob), o1, o2, 0, c, w);
  return(Result);
end clob2blob;
/

update my_table t set t.hash = (rawtohex(DBMS_CRYPTO.Hash(clob2blob(t.content),2)));

How to call Oracle MD5 hash function?

4 Answers4

Linked