a6bbc7fdfb31f6aad4107ca5a930a69f86f97764,java/org/apache/catalina/authenticator/DigestAuthenticator.java,DigestAuthenticator,generateNonce,#Request#,303
Before Change
request.getRemoteAddr() + ":" + currentTime + ":" + getKey();
byte[] buffer;
synchronized (md5Helper) {
buffer = md5Helper.digest(
ipTimeKey.getBytes(B2CConverter.ISO_8859_1));
}
String nonce = currentTime + ":" + MD5Encoder.encode(buffer);
After Change
String ipTimeKey =
request.getRemoteAddr() + ":" + currentTime + ":" + getKey();
byte[] buffer = ConcurrentMessageDigest.digestMD5(
ipTimeKey.getBytes(B2CConverter.ISO_8859_1));
String nonce = currentTime + ":" + MD5Encoder.encode(buffer);
NonceInfo info = new NonceInfo(currentTime, 100);