SQL: new .hash() method. Fixed issue orientechnologies#2353

lvca · lvca · commit a235a2beeca0 · 2014-05-23T20:16:55.000+02:00
diff --git a/core/src/main/java/com/orientechnologies/orient/core/security/OSecurityManager.java b/core/src/main/java/com/orientechnologies/orient/core/security/OSecurityManager.java
@@ -15,20 +15,19 @@
  */
 package com.orientechnologies.orient.core.security;
 
-import java.io.UnsupportedEncodingException;
-import java.security.Key;
-import java.security.MessageDigest;
-import java.security.NoSuchAlgorithmException;
+import com.orientechnologies.common.log.OLogManager;
+import com.orientechnologies.orient.core.exception.OConfigurationException;
+import com.orientechnologies.orient.core.exception.OSecurityAccessException;
+import com.orientechnologies.orient.core.exception.OSecurityException;
 
 import javax.crypto.Cipher;
 import javax.crypto.KeyGenerator;
 import javax.crypto.SecretKey;
 import javax.crypto.spec.SecretKeySpec;
-
-import com.orientechnologies.common.log.OLogManager;
-import com.orientechnologies.orient.core.exception.OConfigurationException;
-import com.orientechnologies.orient.core.exception.OSecurityAccessException;
-import com.orientechnologies.orient.core.exception.OSecurityException;
+import java.io.UnsupportedEncodingException;
+import java.security.Key;
+import java.security.MessageDigest;
+import java.security.NoSuchAlgorithmException;
 
 public class OSecurityManager {
 
@@ -47,6 +46,35 @@ public OSecurityManager() {
     }
   }
 
+  public static String digest2String(final String iInput, String iAlgorithm) throws NoSuchAlgorithmException,
+      UnsupportedEncodingException {
+    if (iAlgorithm == null)
+      iAlgorithm = ALGORITHM;
+
+    final MessageDigest msgDigest = MessageDigest.getInstance(iAlgorithm);
+
+    return byteArrayToHexStr(msgDigest.digest(iInput.getBytes("UTF-8")));
+  }
+
+  public static OSecurityManager instance() {
+    return instance;
+  }
+
+  private static String byteArrayToHexStr(final byte[] data) {
+    if (data == null)
+      return null;
+
+    final char[] chars = new char[data.length * 2];
+    for (int i = 0; i < data.length; i++) {
+      final byte current = data[i];
+      final int hi = (current & 0xF0) >> 4;
+      final int lo = current & 0x0F;
+      chars[2 * i] = (char) (hi < 10 ? ('0' + hi) : ('A' + hi - 10));
+      chars[2 * i + 1] = (char) (lo < 10 ? ('0' + lo) : ('A' + lo - 10));
+    }
+    return new String(chars);
+  }
+
   public boolean check(final byte[] iInput1, final byte[] iInput2) {
     return MessageDigest.isEqual(iInput1, iInput2);
   }
@@ -140,23 +168,4 @@ public byte[] decrypt(final String iAlgorithm, final Key iKey, final byte[] iDat
       throw new OSecurityException("Error on decrypting data", e);
     }
   }
-
-  public static OSecurityManager instance() {
-    return instance;
-  }
-
-  private static String byteArrayToHexStr(final byte[] data) {
-    if (data == null)
-      return null;
-
-    final char[] chars = new char[data.length * 2];
-    for (int i = 0; i < data.length; i++) {
-      final byte current = data[i];
-      final int hi = (current & 0xF0) >> 4;
-      final int lo = current & 0x0F;
-      chars[2 * i] = (char) (hi < 10 ? ('0' + hi) : ('A' + hi - 10));
-      chars[2 * i + 1] = (char) (lo < 10 ? ('0' + lo) : ('A' + lo - 10));
-    }
-    return new String(chars);
-  }
 }
diff --git a/core/src/main/java/com/orientechnologies/orient/core/sql/functions/text/OSQLMethodHash.java b/core/src/main/java/com/orientechnologies/orient/core/sql/functions/text/OSQLMethodHash.java
@@ -0,0 +1,61 @@
+/*
+ * Copyright 2013 Orient Technologies.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *      http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+package com.orientechnologies.orient.core.sql.functions.text;
+
+import com.orientechnologies.orient.core.command.OCommandContext;
+import com.orientechnologies.orient.core.db.record.OIdentifiable;
+import com.orientechnologies.orient.core.exception.OCommandExecutionException;
+import com.orientechnologies.orient.core.security.OSecurityManager;
+import com.orientechnologies.orient.core.sql.method.misc.OAbstractSQLMethod;
+
+import java.io.UnsupportedEncodingException;
+import java.security.NoSuchAlgorithmException;
+
+/**
+ * Hash a string supporting multiple algorithm, all those supported by JVM
+ * 
+ * @author Luca Garulli (l.garulli--at--orientechnologies.com)
+ */
+public class OSQLMethodHash extends OAbstractSQLMethod {
+
+  public static final String NAME = "hash";
+
+  public OSQLMethodHash() {
+    super(NAME, 0, 1);
+  }
+
+  @Override
+  public String getSyntax() {
+    return "hash([<algorithm>])";
+  }
+
+  @Override
+  public Object execute(final Object iThis, final OIdentifiable iCurrentRecord, final OCommandContext iContext,
+      final Object ioResult, final Object[] iParams) {
+    if (iThis == null)
+      return null;
+
+    final String algorithm = iParams.length > 0 ? iParams[0].toString() : OSecurityManager.ALGORITHM;
+    try {
+      return OSecurityManager.digest2String(iThis.toString(), algorithm);
+
+    } catch (NoSuchAlgorithmException e) {
+      throw new OCommandExecutionException("hash(): algorithm '" + algorithm + "' is not supported");
+    } catch (UnsupportedEncodingException e) {
+      throw new OCommandExecutionException("hash(): encoding 'UTF-8' is not supported");
+    }
+  }
+}
diff --git a/core/src/main/java/com/orientechnologies/orient/core/sql/method/ODefaultSQLMethodFactory.java b/core/src/main/java/com/orientechnologies/orient/core/sql/method/ODefaultSQLMethodFactory.java
@@ -24,6 +24,7 @@
 import com.orientechnologies.orient.core.sql.functions.misc.OSQLMethodExclude;
 import com.orientechnologies.orient.core.sql.functions.misc.OSQLMethodInclude;
 import com.orientechnologies.orient.core.sql.functions.text.OSQLMethodAppend;
+import com.orientechnologies.orient.core.sql.functions.text.OSQLMethodHash;
 import com.orientechnologies.orient.core.sql.functions.text.OSQLMethodLength;
 import com.orientechnologies.orient.core.sql.functions.text.OSQLMethodReplace;
 import com.orientechnologies.orient.core.sql.functions.text.OSQLMethodRight;
@@ -63,6 +64,7 @@ public ODefaultSQLMethodFactory() {
     register(OSQLMethodField.NAME, new OSQLMethodField());
     register(OSQLMethodFormat.NAME, new OSQLMethodFormat());
     register(OSQLMethodFunctionDelegate.NAME, OSQLMethodFunctionDelegate.class);
+    register(OSQLMethodHash.NAME, new OSQLMethodHash());
     register(OSQLMethodInclude.NAME, new OSQLMethodInclude());
     register(OSQLMethodIndexOf.NAME, new OSQLMethodIndexOf());
     register(OSQLMethodJavaType.NAME, new OSQLMethodJavaType());
diff --git a/tests/src/test/java/com/orientechnologies/orient/test/database/auto/SQLFunctionsTest.java b/tests/src/test/java/com/orientechnologies/orient/test/database/auto/SQLFunctionsTest.java
@@ -15,32 +15,34 @@
  */
 package com.orientechnologies.orient.test.database.auto;
 
-import java.text.SimpleDateFormat;
-import java.util.Collection;
-import java.util.Date;
-import java.util.HashSet;
-import java.util.List;
-import java.util.Map;
-import java.util.Set;
-
-import org.testng.Assert;
-import org.testng.annotations.AfterTest;
-import org.testng.annotations.BeforeTest;
-import org.testng.annotations.Parameters;
-import org.testng.annotations.Test;
-
 import com.orientechnologies.orient.core.command.OCommandContext;
 import com.orientechnologies.orient.core.db.document.ODatabaseDocument;
 import com.orientechnologies.orient.core.db.document.ODatabaseDocumentTx;
 import com.orientechnologies.orient.core.db.record.OIdentifiable;
 import com.orientechnologies.orient.core.metadata.schema.OClass;
 import com.orientechnologies.orient.core.metadata.schema.OType;
 import com.orientechnologies.orient.core.record.impl.ODocument;
+import com.orientechnologies.orient.core.security.OSecurityManager;
 import com.orientechnologies.orient.core.sql.OCommandSQL;
 import com.orientechnologies.orient.core.sql.OCommandSQLParsingException;
 import com.orientechnologies.orient.core.sql.OSQLEngine;
 import com.orientechnologies.orient.core.sql.functions.OSQLFunctionAbstract;
 import com.orientechnologies.orient.core.sql.query.OSQLSynchQuery;
+import org.testng.Assert;
+import org.testng.annotations.AfterTest;
+import org.testng.annotations.BeforeTest;
+import org.testng.annotations.Parameters;
+import org.testng.annotations.Test;
+
+import java.io.UnsupportedEncodingException;
+import java.security.NoSuchAlgorithmException;
+import java.text.SimpleDateFormat;
+import java.util.Collection;
+import java.util.Date;
+import java.util.HashSet;
+import java.util.List;
+import java.util.Map;
+import java.util.Set;
 
 @Test(groups = "sql-select")
 public class SQLFunctionsTest {
@@ -336,7 +338,8 @@ public String getSyntax() {
       }
 
       @Override
-      public Object execute(Object iThis, OIdentifiable iCurrentRecord, Object iCurrentResult, final Object[] iParams, OCommandContext iContext) {
+      public Object execute(Object iThis, OIdentifiable iCurrentRecord, Object iCurrentResult, final Object[] iParams,
+          OCommandContext iContext) {
         if (iParams[0] == null || iParams[1] == null)
           // CHECK BOTH EXPECTED PARAMETERS
           return null;
@@ -379,6 +382,20 @@ public void queryAsLong() {
     }
   }
 
+  @Test
+  public void testHashMethod() throws UnsupportedEncodingException, NoSuchAlgorithmException {
+    List<ODocument> result = database.command(
+        new OSQLSynchQuery<ODocument>("select name, name.hash() as n256, name.hash('sha-512') as n512 from OUser")).execute();
+
+    Assert.assertFalse(result.isEmpty());
+    for (ODocument d : result) {
+      final String name = d.field("name");
+
+      Assert.assertEquals(OSecurityManager.digest2String(name, "SHA-256"), d.field("n256"));
+      Assert.assertEquals(OSecurityManager.digest2String(name, "SHA-512"), d.field("n512"));
+    }
+  }
+
   @BeforeTest
   public void openDatabase() {
     database.open("admin", "admin");
