Главная Обзор Помощь
Регистрация Вход
github
/
spring-security
зеркало из https://github.com/spring-projects/spring-security
2
0
Ответвить 0
Файлы Задачи 0 Вики
Просмотр исходного кода

SEC-2521: Improve StandardPasswordEncoder performance

Rob Winch 9 лет назад
Родитель
4cc2ffaa2d
Сommit
90f230cbfa
1 измененных файлов с 19 добавлено и 14 удалено
Разделённый вид Показать статистику Diff
  1. 19 14
      crypto/src/main/java/org/springframework/security/crypto/password/Digester.java

+ 19 - 14
crypto/src/main/java/org/springframework/security/crypto/password/Digester.java
Просмотреть файл 

@@ -17,19 +17,19 @@ package org.springframework.security.crypto.password;
 
 
 import java.security.MessageDigest;
 
 import java.security.NoSuchAlgorithmException;
 
-import java.security.NoSuchProviderException;
 
 
 /**
 
  * Helper for working with the MessageDigest API.
 
  *
 
- * Performs the configured number of iterations of the hashing algorithm per digest to aid in protecting against brute force attacks.
 
+ * Performs the configured number of iterations of the hashing algorithm per digest to aid
 
+ * in protecting against brute force attacks.
 
  *
 
  * @author Keith Donald
 
  * @author Luke Taylor
 
  */
 
 final class Digester {
 
 
-    private final MessageDigest messageDigest;
 
+    private final String algorithm;
 
 
     private final int iterations;
 
 
@@ -39,21 +39,26 @@ final class Digester {
 
      * @param iterations the number of times to apply the digest algorithm to the input
 
      */
 
     public Digester(String algorithm, int iterations) {
 
-        try {
 
-            messageDigest = MessageDigest.getInstance(algorithm);
 
-        } catch (NoSuchAlgorithmException e) {
 
-            throw new IllegalStateException("No such hashing algorithm", e);
 
-        }
 
-
 
+        // eagerly validate the algorithm
 
+        createDigest(algorithm);
 
+        this.algorithm = algorithm;
 
         this.iterations = iterations;
 
     }
 
 
     public byte[] digest(byte[] value) {
 
-        synchronized (messageDigest) {
 
-            for (int i = 0; i < iterations; i++) {
 
-                value = messageDigest.digest(value);
 
-            }
 
-            return value;
 
+        MessageDigest messageDigest = createDigest(algorithm);
 
+        for (int i = 0; i < iterations; i++) {
 
+            value = messageDigest.digest(value);
 
+        }
 
+        return value;
 
+    }
 
+
 
+    private static MessageDigest createDigest(String algorithm) {
 
+        try {
 
+            return MessageDigest.getInstance(algorithm);
 
+        }
 
+        catch (NoSuchAlgorithmException e) {
 
+            throw new IllegalStateException("No such hashing algorithm", e);
 
         }
 
     }
 
 }