review changes

slack-go · Nov 4, 2018 · c1ab2cb · c1ab2cb
1 parent 5a52357
commit c1ab2cb
Show file tree

Hide file tree

Showing 2 changed files with 21 additions and 10 deletions.
diff --git a/security.go b/security.go
@@ -9,6 +9,7 @@ import (
 	"hash"
 	"net/http"
 	"strconv"
+	"strings"
 	"time"
 )
 
@@ -20,23 +21,31 @@ const (
 
 // SecretsVerifier contains the information needed to verify that the request comes from Slack
 type SecretsVerifier struct {
-	signature string
+	signature []byte
 	hmac      hash.Hash
 }
 
 func unsafeSignatureVerifier(header http.Header, secret string) (_ SecretsVerifier, err error) {
+	var (
+		bsignature []byte
+	)
+
 	signature := header.Get(hSignature)
 	stimestamp := header.Get(hTimestamp)
 
 	if signature == "" || stimestamp == "" {
 		return SecretsVerifier{}, errors.New("missing headers")
 	}
 
+	if bsignature, err = hex.DecodeString(strings.TrimPrefix(signature, "v0=")); err != nil {
+		return SecretsVerifier{}, err
+	}
+
 	hash := hmac.New(sha256.New, []byte(secret))
 	hash.Write([]byte(fmt.Sprintf("v0:%s:", stimestamp)))
 
 	return SecretsVerifier{
-		signature: signature,
+		signature: bsignature,
 		hmac:      hash,
 	}, nil
 }
@@ -50,7 +59,7 @@ func NewSecretsVerifier(header http.Header, secret string) (sv SecretsVerifier,
 	stimestamp := header.Get(hTimestamp)
 
 	if sv, err = unsafeSignatureVerifier(header, secret); err != nil {
-		return sv, err
+		return SecretsVerifier{}, err
 	}
 
 	if timestamp, err = strconv.ParseInt(stimestamp, 10, 64); err != nil {
@@ -59,7 +68,7 @@ func NewSecretsVerifier(header http.Header, secret string) (sv SecretsVerifier,
 
 	diff := absDuration(time.Now().Sub(time.Unix(timestamp, 0)))
 	if diff > 5*time.Minute {
-		return sv, fmt.Errorf("timestamp is too old")
+		return SecretsVerifier{}, fmt.Errorf("timestamp is too old")
 	}
 
 	return sv, err
@@ -71,10 +80,9 @@ func (v *SecretsVerifier) Write(body []byte) (n int, err error) {
 
 // Ensure compares the signature sent from Slack with the actual computed hash to judge validity
 func (v SecretsVerifier) Ensure() error {
-	computed := "v0=" + string(hex.EncodeToString(v.hmac.Sum(nil)))
-
+	computed := v.hmac.Sum(nil)
 	// use hmac.Equal prevent leaking timing information.
-	if hmac.Equal([]byte(computed), []byte(v.signature)) {
+	if hmac.Equal(computed, v.signature) {
 		return nil
 	}
 

diff --git a/security_test.go b/security_test.go
@@ -32,7 +32,7 @@ func TestExpiredTimestamp(t *testing.T) {
 	}
 }
 
-func TestNewSecretsVerifier(t *testing.T) {
+func TestUnsafeSignatureVerifier(t *testing.T) {
 	tests := []struct {
 		title         string
 		header        http.Header
@@ -96,10 +96,13 @@ func TestEnsure(t *testing.T) {
 	}
 
 	for _, test := range tests {
-		sv, _ := NewSecretsVerifier(test.header, test.signingSecret)
+		sv, err := unsafeSignatureVerifier(test.header, test.signingSecret)
+		if err != nil {
+			t.Fatalf("unexpected error: %s", err)
+		}
 		io.WriteString(&sv, test.body)
 
-		err := sv.Ensure()
+		err = sv.Ensure()
 
 		if !test.expectError && err != nil {
 			log.Fatalf("%s: Unexpected error: %s in test", test.title, err)