dependency 'org.apache.sshd:sshd-core:2.12.1'
dependency 'org.assertj:assertj-core:3.25.3'
dependency 'org.assertj:assertj-guava:3.25.3'
+ dependency 'org.bouncycastle:bcpkix-jdk18on:1.78.1'
+ dependency 'org.bouncycastle:bcprov-jdk18on:1.78.1'
dependency('org.codehaus.sonar:sonar-channel:4.2') {
exclude 'org.slf4j:slf4j-api'
}
api 'commons-codec:commons-codec'
api 'org.kohsuke:github-api'
api 'com.auth0:java-jwt'
- api 'org.bouncycastle:bcpkix-jdk18on:1.78.1'
+ api 'org.bouncycastle:bcpkix-jdk18on'
api 'org.sonarsource.api.plugin:sonar-plugin-api'
api project(':server:sonar-auth-github')
api project(':server:sonar-auth-gitlab')
dependencies {
// please keep the list grouped by configuration and ordered by name
- api 'org.apache.commons:commons-email'
api 'commons-io:commons-io'
- api 'org.apache.commons:commons-lang3'
api 'com.google.guava:guava'
- api 'org.slf4j:slf4j-api'
api 'com.squareup.okhttp3:okhttp'
+ api 'org.apache.commons:commons-email'
+ api 'org.apache.commons:commons-lang3'
+ api 'org.bouncycastle:bcprov-jdk18on'
api 'org.elasticsearch.client:elasticsearch-rest-high-level-client'
+ api 'org.slf4j:slf4j-api'
api 'org.sonarsource.api.plugin:sonar-plugin-api'
api project(':server:sonar-db-dao')
api project(':server:sonar-db-migration')
api project(':sonar-ws')
compileOnlyApi 'com.google.code.findbugs:jsr305'
-
testImplementation 'org.elasticsearch.plugin:transport-netty4-client'
testImplementation 'ch.qos.logback:logback-core'
testImplementation 'com.google.code.findbugs:jsr305'
testImplementation testFixtures(project(':server:sonar-webserver-es'))
testImplementation project(':sonar-plugin-api-impl')
testImplementation project(':sonar-testing-harness')
-
+
testFixturesApi 'junit:junit'
testFixturesApi testFixtures(project(':server:sonar-db-dao'))
import java.time.format.DateTimeFormatter;
import java.util.List;
import java.util.Locale;
-import org.apache.commons.codec.digest.DigestUtils;
import org.jetbrains.annotations.NotNull;
import org.sonar.api.utils.System2;
import org.sonar.api.utils.text.JsonWriter;
import org.sonar.core.telemetry.TelemetryExtension;
+import org.sonar.server.util.DigestUtil;
import static org.sonar.api.utils.DateUtils.DATETIME_FORMAT;
json.beginArray();
telemetryData.getUserTelemetries().forEach(user -> {
json.beginObject();
- json.prop("userUuid", DigestUtils.sha3_224Hex(user.getUuid()));
+ json.prop("userUuid", DigestUtil.sha3_224Hex(user.getUuid()));
json.prop("status", user.isActive() ? "active" : "inactive");
json.prop("identityProvider", user.getExternalIdentityProvider());
--- /dev/null
+/*
+ * SonarQube
+ * Copyright (C) 2009-2024 SonarSource SA
+ * mailto:info AT sonarsource DOT com
+ *
+ * This program is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU Lesser General Public
+ * License as published by the Free Software Foundation; either
+ * version 3 of the License, or (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
+ * Lesser General Public License for more details.
+ *
+ * You should have received a copy of the GNU Lesser General Public License
+ * along with this program; if not, write to the Free Software Foundation,
+ * Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
+ */
+package org.sonar.server.util;
+
+import java.nio.charset.StandardCharsets;
+import org.bouncycastle.jcajce.provider.digest.SHA3;
+import org.bouncycastle.util.encoders.Hex;
+
+public class DigestUtil {
+
+ private DigestUtil() {
+ // utility class
+ }
+
+ public static String sha3_224Hex(String input) {
+ SHA3.DigestSHA3 sha3Digest = new SHA3.Digest224();
+ byte[] hashBytes = sha3Digest.digest(input.getBytes(StandardCharsets.UTF_8));
+ return Hex.toHexString(hashBytes);
+ }
+
+}
import java.util.Set;
import java.util.stream.Collectors;
import java.util.stream.IntStream;
-import org.apache.commons.codec.digest.DigestUtils;
import org.jetbrains.annotations.NotNull;
import org.junit.Test;
import org.junit.runner.RunWith;
import org.sonar.db.project.CreationMethod;
import org.sonar.db.user.UserTelemetryDto;
import org.sonar.server.qualitygate.Condition;
+import org.sonar.server.util.DigestUtil;
import static java.util.stream.Collectors.joining;
import static org.apache.commons.lang3.RandomStringUtils.randomAlphabetic;
]
}
"""
- .formatted(DigestUtils.sha3_224Hex("uuid-0"), DigestUtils.sha3_224Hex("uuid-1"), DigestUtils.sha3_224Hex("uuid-2")));
+ .formatted(DigestUtil.sha3_224Hex("uuid-0"), DigestUtil.sha3_224Hex("uuid-1"), DigestUtil.sha3_224Hex("uuid-2")));
}
@Test
--- /dev/null
+/*
+ * SonarQube
+ * Copyright (C) 2009-2024 SonarSource SA
+ * mailto:info AT sonarsource DOT com
+ *
+ * This program is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU Lesser General Public
+ * License as published by the Free Software Foundation; either
+ * version 3 of the License, or (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
+ * Lesser General Public License for more details.
+ *
+ * You should have received a copy of the GNU Lesser General Public License
+ * along with this program; if not, write to the Free Software Foundation,
+ * Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
+ */
+package org.sonar.server.util;
+
+import org.junit.jupiter.api.Test;
+
+import static org.junit.jupiter.api.Assertions.assertEquals;
+
+class DigestUtilTest {
+
+ @Test
+ void whenCalledOnTheSameInput_sha3_224Hex_returnsTheSameValueAsDigestUtils() {
+ String input = "String to be hashed";
+
+ //Apache Commons DigestUtils digest for the string "String to be hashed"
+ String apacheCommonsDigest = "57ead8c5fc5c15ed7bde0550648d06a6aed3cba443ed100a6f5e64f3";
+
+ assertEquals(apacheCommonsDigest, DigestUtil.sha3_224Hex(input));
+ }
+
+}
\ No newline at end of file
projects / sonarqube.git / commitdiff