decode unicode passwords before salting+hashing (bug 858262)

2013-04-04 14:39:12 -07:00 · 2013-04-04 14:39:12 -07:00 · 154eb0d7a7
--- a/apps/users/models.py
+++ b/apps/users/models.py
@ -326,6 +326,20 @@ class UserProfile(amo.models.OnChangeMixin, amo.models.ModelBase):
            return valid

        algo, salt, hsh = self.password.split('$')
+        #Complication due to getpersonas account migration; we don't
+        #know if passwords were utf-8 or latin-1 when hashed. If you
+        #can prove that they are one or the other, you can delete one
+        #of these branches.
+        if '+base64' in algo and isinstance(raw_password, unicode):
+            if hsh == get_hexdigest(algo, salt, raw_password.encode('utf-8')):
+                return True
+            else:
+                try:
+                    return hsh == get_hexdigest(algo, salt,
+                                                raw_password.encode('latin1'))
+                except UnicodeEncodeError:
+                    return False
+        else:
            return hsh == get_hexdigest(algo, salt, raw_password)

    def set_password(self, raw_password, algorithm='sha512'):
--- a/apps/users/tests/test_models.py
+++ b/apps/users/tests/test_models.py
@ -271,6 +271,26 @@ class TestPasswords(amo.tests.TestCase):
                        (encodestring(self.bytes_), hsh))
        assert u.check_password('password') is True

+    def test_persona_sha512_base64_maybe_utf8(self):
+        hsh = hashlib.sha512(self.bytes_ + self.utf.encode('utf8')).hexdigest()
+        u = UserProfile(password='sha512+base64$%s$%s' %
+                        (encodestring(self.bytes_), hsh))
+        assert u.check_password(self.utf) is True
+
+    def test_persona_sha512_base64_maybe_latin1(self):
+        passwd = u'fo\xf3'
+        hsh = hashlib.sha512(self.bytes_ + passwd.encode('latin1')).hexdigest()
+        u = UserProfile(password='sha512+base64$%s$%s' %
+                        (encodestring(self.bytes_), hsh))
+        assert u.check_password(passwd) is True
+
+    def test_persona_sha512_base64_maybe_not_latin1(self):
+        passwd = u'fo\xf3'
+        hsh = hashlib.sha512(self.bytes_ + passwd.encode('latin1')).hexdigest()
+        u = UserProfile(password='sha512+base64$%s$%s' %
+                        (encodestring(self.bytes_), hsh))
+        assert u.check_password(self.utf) is False
+
    def test_persona_sha512_md5_base64(self):
        md5 = hashlib.md5('password').hexdigest()
        hsh = hashlib.sha512(self.bytes_ + md5).hexdigest()