auth-filters: do not use HMAC-SHA1

Though SHA1 is broken, HMAC-SHA1 is still fine. But let's not push our luck; SHA256 is more sensible anyway. Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
author: Jason A. Donenfeld 2018-07-14 03:32:00 +0200
committer: Jason A. Donenfeld 2018-07-14 03:33:56 +0200
commit: c3b5b5f648d953307672a4b30e9222787668f708 (patch)
tree: 6b2179805885fe812fddc8d54d8e8fd5ee4f6292 /filters/simple-authentication.lua
parent: Bump version. (diff)
download: cgit-c3b5b5f648d953307672a4b30e9222787668f708.tar.gz
cgit-c3b5b5f648d953307672a4b30e9222787668f708.zip
1 files changed, 2 insertions, 2 deletions
diff --git a/filters/simple-authentication.lua b/filters/simple-authentication.lua
index de34d09..596c041 100644
--- a/filters/simple-authentication.lua
+++ b/filters/simple-authentication.lua

@@ -231,7 +231,7 @@ function validate_value(expected_field, cookie)
        end
        -- Lua hashes strings, so these comparisons are time invariant.
-        if hmac ~= crypto.hmac.digest("sha1", field .. "|" .. value .. "|" .. tostring(expiration) .. "|" .. salt, secret) then
+        if hmac ~= crypto.hmac.digest("sha256", field .. "|" .. value .. "|" .. tostring(expiration) .. "|" .. salt, secret) then
                return nil
        end
@@ -256,7 +256,7 @@ function secure_value(field, value, expiration)
        value = url_encode(value)
        field = url_encode(field)
        authstr = field .. "|" .. value .. "|" .. tostring(expiration) .. "|" .. salt
-        authstr = authstr .. "|" .. crypto.hmac.digest("sha1", authstr, secret)
+        authstr = authstr .. "|" .. crypto.hmac.digest("sha256", authstr, secret)
        return authstr
 end
author	Jason A. Donenfeld	2018-07-14 03:32:00 +0200
committer	Jason A. Donenfeld	2018-07-14 03:33:56 +0200
commit	c3b5b5f648d953307672a4b30e9222787668f708 (patch)
tree	6b2179805885fe812fddc8d54d8e8fd5ee4f6292 /filters/simple-authentication.lua
parent	Bump version. (diff)
download	cgit-c3b5b5f648d953307672a4b30e9222787668f708.tar.gz cgit-c3b5b5f648d953307672a4b30e9222787668f708.zip

diff --git a/filters/simple-authentication.lua b/filters/simple-authentication.lua index de34d09..596c041 100644 --- a/filters/simple-authentication.lua +++ b/filters/simple-authentication.lua
@@ -231,7 +231,7 @@ function validate_value(expected_field, cookie)
231	end	231	end
232		232
233	-- Lua hashes strings, so these comparisons are time invariant.	233	-- Lua hashes strings, so these comparisons are time invariant.
234	if hmac ~= crypto.hmac.digest("sha1", field .. "\|" .. value .. "\|" .. tostring(expiration) .. "\|" .. salt, secret) then	234	if hmac ~= crypto.hmac.digest("sha256", field .. "\|" .. value .. "\|" .. tostring(expiration) .. "\|" .. salt, secret) then
235	return nil	235	return nil
236	end	236	end
237		237
@@ -256,7 +256,7 @@ function secure_value(field, value, expiration)
256	value = url_encode(value)	256	value = url_encode(value)
257	field = url_encode(field)	257	field = url_encode(field)
258	authstr = field .. "\|" .. value .. "\|" .. tostring(expiration) .. "\|" .. salt	258	authstr = field .. "\|" .. value .. "\|" .. tostring(expiration) .. "\|" .. salt
259	authstr = authstr .. "\|" .. crypto.hmac.digest("sha1", authstr, secret)	259	authstr = authstr .. "\|" .. crypto.hmac.digest("sha256", authstr, secret)
260	return authstr	260	return authstr
261	end	261	end
262		262