Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $
You can buy this project and download/modify it how often you want.
com.alipay.oceanbase.rpc.util.Security Maven / Gradle / Ivy
/*-
* #%L
* OBKV Table Client Framework
* %%
* Copyright (C) 2021 OceanBase
* %%
* OBKV Table Client Framework is licensed under Mulan PSL v2.
* You can use this software according to the terms and conditions of the Mulan PSL v2.
* You may obtain a copy of Mulan PSL v2 at:
* http://license.coscl.org.cn/MulanPSL2
* THIS SOFTWARE IS PROVIDED ON AN "AS IS" BASIS, WITHOUT WARRANTIES OF ANY KIND,
* EITHER EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO NON-INFRINGEMENT,
* MERCHANTABILITY OR FIT FOR A PARTICULAR PURPOSE.
* See the Mulan PSL v2 for more details.
* #L%
*/
package com.alipay.oceanbase.rpc.util;
import com.alipay.oceanbase.rpc.exception.ObTableAuthException;
import java.security.MessageDigest;
/**
* com.mysql.jdbc.MysqlIO#secureAuth
*/
public class Security {
private static final byte[] bytes = { '1', '2', '3', '4', '5', '6', '7', '8', '9',
'0', 'q', 'w', 'e', 'r', 't', 'y', 'u', 'i', 'o', 'p', 'a', 's', 'd', 'f', 'g', 'h',
'j', 'k', 'l', 'z', 'x', 'c', 'v', 'b', 'n', 'm', 'Q', 'W', 'E', 'R', 'T', 'Y', 'U',
'I', 'O', 'P', 'A', 'S', 'D', 'F', 'G', 'H', 'J', 'K', 'L', 'Z', 'X', 'C', 'V', 'B',
'N', 'M' };
private static final long multiplier = 0x5DEECE66DL;
private static final long addend = 0xBL;
private static final long mask = (1L << 48) - 1;
private static final long integerMask = (1L << 33) - 1;
private static final long seedUniquifier = 8682522807148012L;
private static long seed;
static {
long s = seedUniquifier + System.nanoTime();
s = (s ^ multiplier) & mask;
seed = s;
}
/**
* SHA1(passwd) ^ SHA1(scramble + SHA1(SHA1(passwd)))
* @param password plain password
* @param scrambleSalt salt
* @return cipher password
*/
public static final ObBytesString scramblePassword(String password, ObBytesString scrambleSalt) {
if (password == null || password.isEmpty()) {
return new ObBytesString();
}
return scramblePassword(password.getBytes(), scrambleSalt.bytes);
}
public static final ObBytesString scramblePassword(byte[] password, byte[] seed) {
if (password == null || password.length == 0) {
return new ObBytesString();
}
try {
MessageDigest md = MessageDigest.getInstance("SHA-1");
byte[] pass1 = md.digest(password);
md.reset();
byte[] pass2 = md.digest(pass1);
md.reset();
md.update(seed);
byte[] pass3 = md.digest(pass2);
for (int i = 0; i < pass3.length; i++) {
pass3[i] = (byte) (pass3[i] ^ pass1[i]);
}
return new ObBytesString(pass3);
} catch (Throwable e) {
throw new ObTableAuthException("password scramble failed", e);
}
}
/**
* Get password scramble salt
* @param size salt size
* @return password scramble salt
*/
public static final ObBytesString getPasswordScramble(int size) {
byte[] bb = bytes;
byte[] ab = new byte[size];
for (int i = 0; i < size; i++) {
ab[i] = randomByte(bb);
}
return new ObBytesString(ab);
}
private static byte randomByte(byte[] b) {
int ran = (int) ((random() & integerMask) >>> 16);
return b[ran % b.length];
}
private static long random() {
long oldSeed = seed;
long nextSeed = 0L;
do {
nextSeed = (oldSeed * multiplier + addend) & mask;
} while (oldSeed == nextSeed);
seed = nextSeed;
return nextSeed;
}
}
