Is this MessageDigest wrapper thread-safe?

Question

I wrote my own simplified MessageDigest wrapper and now I'm wondering if it's thread safe.

public final class SimpleIMD implements ImmutableMessageDigest {
    private final MessageDigest md;

    public SimpleIMD(MessageDigest md) {
        this.md = this.cloneMessageDigest(md);
    }

    private MessageDigest cloneMessageDigest(MessageDigest original) {
        MessageDigest clone = null;
        try {
            clone = (MessageDigest) original.clone();
        } catch (CloneNotSupportedException cnse) {
            throw new RuntimeException(
                "Failed to instantiate a new SimpleImd instance.",
                cnse
            );
        } finally {
            return clone;
        }
    }

    @Override
    public byte[] digest() {
        return this.md.digest();
    }

    @Override
    public ImmutableMessageDigest update(byte[] arr, int offset, int len) {
        MessageDigest newMsgDigest = this.cloneMessageDigest(this.md);
        newMsgDigest.update(arr, offset, len);
        return new SimpleIMD(newMsgDigest);
    }
}

Answer 1

As I suspected, my code wasn't thread safe.

For example, if 2 threads shared the same SimpleIMD object and the order of method invocations in time would go something like this:

  T1                 T2
  |                  |
update()             |
  |                  |
  |                digest()
  |                  |
  |                  |
  |                  |

then there is no guarantee that update() will finish before digest().

In fact, digest() may even reset the underlying MessageDigest instance before update() and T1 will have the wrong hash. This problem can be solved by performing digest() on a fresh copy.

So the method:

@Override
public byte[] digest() {
    return this.md.digest();
}

has to be changed to:

@Override
public byte[] digest() {
    return this.cloneMessageDigest(this.md).digest();
}

---

UPDATE

The solution presented here is incorporated into ImmutableMessageDigest that's part of Caesar, an open source library I wrote.