commit 4addb567ed440bcc756acb6afd72d7ac5b269b5e
author Eric Norman <eric.d.norman@gmail.com> Mon May 24 10:39:42 2021 -0700
committer GitHub <noreply@github.com> Mon May 24 10:39:42 2021 -0700
tree 0516452930d4b6a5640e4513f9ab2d534406b5b2
parent 0260bd9d92c29357a7af81d2d0af52a911c256e8

SLING-10350 Use a stronger algorithm in TokenStore (#3)

switch from sha-1 to sha-256

src/main/java/org/apache/sling/auth/form/impl/TokenStore.java

diff --git a/src/main/java/org/apache/sling/auth/form/impl/TokenStore.java b/src/main/java/org/apache/sling/auth/form/impl/TokenStore.java
index 4e9ff42..89298fb 100644
--- a/src/main/java/org/apache/sling/auth/form/impl/TokenStore.java
+++ b/src/main/java/org/apache/sling/auth/form/impl/TokenStore.java
@@ -62,7 +62,7 @@
      * The name of the HMAC function to calculate the hash code of the payload
      * with the secure token.
      */
-    private static final String HMAC_SHA1 = "HmacSHA1";
+    private static final String HMAC_SHA256 = "HmacSHA256";
 
     /**
      * String encoding to convert byte arrays to strings and vice-versa.
@@ -142,8 +142,8 @@
         }
         byte[] b = new byte[20];
         random.nextBytes(b);
-        final SecretKey secretKey = new SecretKeySpec(b, HMAC_SHA1);
-        final Mac m = Mac.getInstance(HMAC_SHA1);
+        final SecretKey secretKey = new SecretKeySpec(b, HMAC_SHA256);
+        final Mac m = Mac.getInstance(HMAC_SHA256);
         m.init(secretKey);
         m.update(UTF_8.getBytes(StandardCharsets.UTF_8));
         m.doFinal();
@@ -172,7 +172,7 @@
 
         String cookiePayload = String.valueOf(token) + String.valueOf(expires)
             + "@" + userId;
-        Mac m = Mac.getInstance(HMAC_SHA1);
+        Mac m = Mac.getInstance(HMAC_SHA256);
         m.init(key);
         m.update(cookiePayload.getBytes(StandardCharsets.UTF_8));
         String cookieValue = byteToHex(m.doFinal());
@@ -272,7 +272,7 @@
             byte[] b = new byte[20];
             random.nextBytes(b);
 
-            SecretKey newToken = new SecretKeySpec(b, HMAC_SHA1);
+            SecretKey newToken = new SecretKeySpec(b, HMAC_SHA256);
             int nextToken = currentToken + 1;
             if (nextToken == currentTokens.length()) {
                 nextToken = 0;
@@ -337,7 +337,7 @@
                             bytesRead = keyInputStream.read(b, offset, b.length - offset);
                             offset += bytesRead;
                         } while (bytesRead != -1 && offset < b.length);
-                        newKeys.set(i, new SecretKeySpec(b, HMAC_SHA1));
+                        newKeys.set(i, new SecretKeySpec(b, HMAC_SHA256));
                     } else {
                         newKeys.set(i, null);
                     }
@@ -401,9 +401,9 @@
         final MessageDigest md;
 
         try {
-            md = MessageDigest.getInstance("SHA");
+            md = MessageDigest.getInstance("SHA-256");
         } catch (NoSuchAlgorithmException nsae) {
-            throw new InternalError("internal error: SHA-1 not available.");
+            throw new InternalError("internal error: SHA-256 not available.");
         }
 
         // update with XorShifted time values