NotificationsYou must be signed in to change notification settings
Fork928
Star10.1k

Commit458c5dc

committed

fixup! fix: user passwords cleanup

1 parent44c04ec commit458c5dcCopy full SHA for 458c5dc

File tree

3 files changed

+14

-50

lines changed

coderd/userpassword
- hashing_bench_test.go
- userpassword.go
cryptorand
- strings.go

3 files changed

+14

-50

lines changed

`‎coderd/userpassword/hashing_bench_test.go`

Lines changed: 10 additions & 2 deletions

Original file line number	Diff line number	Diff line change
`@@ -10,8 +10,8 @@ import (`
`10`	`10`	`)`
`11`	`11`
`12`	`12`	`var (`
`13`		`-salt= []byte(cryptorand.MustString(16))`
`14`		`-secret= []byte(cryptorand.MustString(24))`
	`13`	`+salt= []byte(must(cryptorand.String(16)))`
	`14`	`+secret= []byte(must(cryptorand.String(24)))`
`15`	`15`
`16`	`16`	`resBcrypt []byte`
`17`	`17`	`resPbkdf2 []byte`
`@@ -60,3 +60,11 @@ func BenchmarkPbkdf2(b *testing.B) {`
`60`	`60`
`61`	`61`	`resPbkdf2=r`
`62`	`62`	`}`
	`63`	`+`
	`64`	`+funcmust(sstring,errerror)string {`
	`65`	`+iferr!=nil {`
	`66`	`+panic(err)`
	`67`	`+}`
	`68`	`+`
	`69`	`+returns`
	`70`	`+}`

`‎coderd/userpassword/userpassword.go`

Lines changed: 1 addition & 3 deletions

Original file line number	Diff line number	Diff line change
`@@ -13,8 +13,6 @@ import (`
`13`	`13`	`"golang.org/x/crypto/pbkdf2"`
`14`	`14`	`"golang.org/x/exp/slices"`
`15`	`15`	`"golang.org/x/xerrors"`
`16`		`-`
`17`		`-"github.com/coder/coder/cryptorand"`
`18`	`16`	`)`
`19`	`17`
`20`	`18`	`var (`
`@@ -40,7 +38,7 @@ var (`
`40`	`38`
`41`	`39`	`// The simulated hash is used when trying to simulate password checks for`
`42`	`40`	`// users that don't exist.`
`43`		`-simulatedHash,_=Hash(cryptorand.MustString(10))`
	`41`	`+simulatedHash,_=Hash("hunter2")`
`44`	`42`	`)`
`45`	`43`
`46`	`44`	`// Make password hashing much faster in tests.`

`‎cryptorand/strings.go`

Lines changed: 3 additions & 45 deletions

Original file line number	Diff line number	Diff line change
`@@ -4,8 +4,6 @@ import (`
`4`	`4`	`"crypto/rand"`
`5`	`5`	`"encoding/binary"`
`6`	`6`	`"strings"`
`7`		`-`
`8`		`-"golang.org/x/xerrors"`
`9`	`7`	`)`
`10`	`8`
`11`	`9`	`// Charsets`
`@@ -34,7 +32,7 @@ const (`
`34`	`32`	`Human="23456789abcdefghjkmnpqrstuvwxyz"`
`35`	`33`	`)`
`36`	`34`
`37`		`-// StringCharset generates a random string using the provided charset and size.`
	`35`	`+// StringCharset generates a random string using the provided charset and size`
`38`	`36`	`funcStringCharset(charSetStrstring,sizeint) (string,error) {`
`39`	`37`	`charSet:= []rune(charSetStr)`
`40`	`38`
`@@ -69,58 +67,18 @@ func StringCharset(charSetStr string, size int) (string, error) {`
`69`	`67`	`returnbuf.String(),nil`
`70`	`68`	`}`
`71`	`69`
`72`		`-// MustStringCharset generates a random string of the given length, using the`
`73`		`-// provided charset. It will panic if an error occurs.`
`74`		`-funcMustStringCharset(charSetstring,sizeint)string {`
`75`		`-s,err:=StringCharset(charSet,size)`
`76`		`-must(err)`
`77`		`-returns`
`78`		`-}`
`79`		`-`
`80`	`70`	`// String returns a random string using Default.`
`81`	`71`	`funcString(sizeint) (string,error) {`
`82`	`72`	`returnStringCharset(Default,size)`
`83`	`73`	`}`
`84`	`74`
`85`		`-// MustString generates a random string of the given length, using`
`86`		`-// the Default charset. It will panic if an error occurs.`
`87`		`-funcMustString(sizeint)string {`
`88`		`-s,err:=String(size)`
`89`		`-must(err)`
`90`		`-returns`
`91`		`-}`
`92`		`-`
`93`	`75`	`// HexString returns a hexadecimal string of given length.`
`94`	`76`	`funcHexString(sizeint) (string,error) {`
`95`	`77`	`returnStringCharset(Hex,size)`
`96`	`78`	`}`
`97`	`79`
`98`		`-// MustHexString generates a random hexadecimal string of the given`
`99`		`-// length. It will panic if an error occurs.`
`100`		`-funcMustHexString(sizeint)string {`
`101`		`-s,err:=HexString(size)`
`102`		`-must(err)`
`103`		`-returns`
`104`		`-}`
`105`		`-`
`106`		`-// Sha1String returns a 40-character hexadecimal string, which matches the`
`107`		`-// length of a SHA-1 hash (160 bits).`
	`80`	`+// Sha1String returns a 40-character hexadecimal string, which matches`
	`81`	`+// the length of a SHA-1 hash (160 bits).`
`108`	`82`	`funcSha1String() (string,error) {`
`109`	`83`	`returnStringCharset(Hex,40)`
`110`	`84`	`}`
`111`		`-`
`112`		`-// MustSha1String returns a 40-character hexadecimal string, which matches the`
`113`		`-// length of a SHA-1 hash (160 bits). It will panic if an error occurs.`
`114`		`-funcMustSha1String()string {`
`115`		`-s,err:=Sha1String()`
`116`		`-must(err)`
`117`		`-returns`
`118`		`-}`
`119`		`-`
`120`		`-// must is a utility function that panics with the given error if`
`121`		`-// err is non-nil.`
`122`		`-funcmust(errerror) {`
`123`		`-iferr!=nil {`
`124`		`-panic(xerrors.Errorf("crand: %w",err))`
`125`		`-}`
`126`		`-}`

0 commit comments

Comments

(0)

Movatterモバイル変換

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit458c5dc

File tree

3 files changed

3 files changed

`‎coderd/userpassword/hashing_bench_test.go`

`‎coderd/userpassword/userpassword.go`

`‎cryptorand/strings.go`

0 commit comments