mirrors/ladybird
0
0
Fork 0
mirror of https://github.com/LadybirdBrowser/ladybird.git synced 2025-07-28 11:49:44 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 10

Meta+LibCrypto: Add SecureRandom and replace PRNG usage with it

Browse source 
This adds a thin wrapper to LibCrypto for generating cryptographically
secure random values and replaces current usages of PRNG within
LibCrypto as well.
This commit is contained in:
rmg-x 2024-12-20 10:32:11 -06:00 committed by Ali Mohammad Pur
commit f55f507e56
Notes: github-actions[bot] 2024-12-24 16:56:11 +00:00
10 changed files with 50 additions and 6 deletions
Download patch file Download diff file Expand all files Collapse all files

1
Libraries/LibCrypto/CMakeLists.txt
View file

@ -31,6 +31,7 @@ set(SOURCES
NumberTheory/ModularFunctions.cpp NumberTheory/ModularFunctions.cpp
PK/RSA.cpp PK/RSA.cpp
PK/EC.cpp PK/EC.cpp
SecureRandom.cpp
) )
serenity_lib(LibCrypto crypto) serenity_lib(LibCrypto crypto)

3
Libraries/LibCrypto/Curves/Ed25519.cpp
View file

@ -8,6 +8,7 @@
#include <LibCrypto/Curves/Curve25519.h> #include <LibCrypto/Curves/Curve25519.h>
#include <LibCrypto/Curves/Ed25519.h> #include <LibCrypto/Curves/Ed25519.h>
#include <LibCrypto/Hash/SHA2.h> #include <LibCrypto/Hash/SHA2.h>
#include <LibCrypto/SecureRandom.h>
namespace Crypto::Curves { namespace Crypto::Curves {
@ -19,7 +20,7 @@ ErrorOr<ByteBuffer> Ed25519::generate_private_key()
// about randomness. // about randomness.
auto buffer = TRY(ByteBuffer::create_uninitialized(key_size())); auto buffer = TRY(ByteBuffer::create_uninitialized(key_size()));
fill_with_random(buffer); fill_with_secure_random(buffer);
return buffer; return buffer;
} }

3
Libraries/LibCrypto/Curves/SECPxxxr1.h
View file

@ -18,6 +18,7 @@
#include <AK/UFixedBigIntDivision.h> #include <AK/UFixedBigIntDivision.h>
#include <LibCrypto/ASN1/DER.h> #include <LibCrypto/ASN1/DER.h>
#include <LibCrypto/Curves/EllipticCurve.h> #include <LibCrypto/Curves/EllipticCurve.h>
#include <LibCrypto/SecureRandom.h>
namespace { namespace {
// Used by ASN1 macros // Used by ASN1 macros
@ -230,7 +231,7 @@ public:
ErrorOr<ByteBuffer> generate_private_key() override ErrorOr<ByteBuffer> generate_private_key() override
{ {
auto buffer = TRY(ByteBuffer::create_uninitialized(KEY_BYTE_SIZE)); auto buffer = TRY(ByteBuffer::create_uninitialized(KEY_BYTE_SIZE));
fill_with_random(buffer); fill_with_secure_random(buffer);
return buffer; return buffer;
} }

3
Libraries/LibCrypto/Curves/X25519.cpp
View file

@ -8,6 +8,7 @@
#include <AK/Random.h> #include <AK/Random.h>
#include <LibCrypto/Curves/Curve25519.h> #include <LibCrypto/Curves/Curve25519.h>
#include <LibCrypto/Curves/X25519.h> #include <LibCrypto/Curves/X25519.h>
#include <LibCrypto/SecureRandom.h>
namespace Crypto::Curves { namespace Crypto::Curves {
@ -29,7 +30,7 @@ static void conditional_swap(u32* first, u32* second, u32 condition)
ErrorOr<ByteBuffer> X25519::generate_private_key() ErrorOr<ByteBuffer> X25519::generate_private_key()
{ {
auto buffer = TRY(ByteBuffer::create_uninitialized(BYTES)); auto buffer = TRY(ByteBuffer::create_uninitialized(BYTES));
fill_with_random(buffer); fill_with_secure_random(buffer);
return buffer; return buffer;
} }

3
Libraries/LibCrypto/Curves/X448.cpp
View file

@ -8,6 +8,7 @@
#include <AK/Endian.h> #include <AK/Endian.h>
#include <AK/Random.h> #include <AK/Random.h>
#include <LibCrypto/Curves/X448.h> #include <LibCrypto/Curves/X448.h>
#include <LibCrypto/SecureRandom.h>
namespace Crypto::Curves { namespace Crypto::Curves {
@ -291,7 +292,7 @@ static void modular_multiply_inverse(u32* state, u32* value)
ErrorOr<ByteBuffer> X448::generate_private_key() ErrorOr<ByteBuffer> X448::generate_private_key()
{ {
auto buffer = TRY(ByteBuffer::create_uninitialized(BYTES)); auto buffer = TRY(ByteBuffer::create_uninitialized(BYTES));
fill_with_random(buffer); fill_with_secure_random(buffer);
return buffer; return buffer;
} }

3
Libraries/LibCrypto/NumberTheory/ModularFunctions.cpp
View file

@ -8,6 +8,7 @@
#include <AK/Random.h> #include <AK/Random.h>
#include <LibCrypto/BigInt/Algorithms/UnsignedBigIntegerAlgorithms.h> #include <LibCrypto/BigInt/Algorithms/UnsignedBigIntegerAlgorithms.h>
#include <LibCrypto/NumberTheory/ModularFunctions.h> #include <LibCrypto/NumberTheory/ModularFunctions.h>
#include <LibCrypto/SecureRandom.h>
namespace Crypto::NumberTheory { namespace Crypto::NumberTheory {
@ -172,7 +173,7 @@ UnsignedBigInteger random_number(UnsignedBigInteger const& min, UnsignedBigInteg
auto buffer = ByteBuffer::create_uninitialized(size).release_value_but_fixme_should_propagate_errors(); // FIXME: Handle possible OOM situation. auto buffer = ByteBuffer::create_uninitialized(size).release_value_but_fixme_should_propagate_errors(); // FIXME: Handle possible OOM situation.
auto* buf = buffer.data(); auto* buf = buffer.data();
fill_with_random(buffer); fill_with_secure_random(buffer);
UnsignedBigInteger random { buf, size }; UnsignedBigInteger random { buf, size };
// At this point, `random` is a large number, in the range [0, 256^size). // At this point, `random` is a large number, in the range [0, 256^size).
// To get down to the actual range, we could just compute random % range. // To get down to the actual range, we could just compute random % range.

3
Libraries/LibCrypto/PK/RSA.cpp
View file

@ -12,6 +12,7 @@
#include <LibCrypto/ASN1/PEM.h> #include <LibCrypto/ASN1/PEM.h>
#include <LibCrypto/Certificate/Certificate.h> #include <LibCrypto/Certificate/Certificate.h>
#include <LibCrypto/PK/RSA.h> #include <LibCrypto/PK/RSA.h>
#include <LibCrypto/SecureRandom.h>
namespace Crypto::PK { namespace Crypto::PK {
@ -253,7 +254,7 @@ void RSA_PKCS1_EME::encrypt(ReadonlyBytes in, Bytes& out)
Vector<u8, 8096> ps; Vector<u8, 8096> ps;
ps.resize(ps_length); ps.resize(ps_length);
fill_with_random(ps); fill_with_secure_random(ps);
// since fill_with_random can create zeros (shocking!) // since fill_with_random can create zeros (shocking!)
// we have to go through and un-zero the zeros // we have to go through and un-zero the zeros
for (size_t i = 0; i < ps_length; ++i) { for (size_t i = 0; i < ps_length; ++i) {

21
Libraries/LibCrypto/SecureRandom.cpp Normal file
View file

@ -0,0 +1,21 @@
/*
* Copyright (c) 2024, the Ladybird developers.
*
* SPDX-License-Identifier: BSD-2-Clause
*/
#include <LibCrypto/SecureRandom.h>
#include <openssl/rand.h>
namespace Crypto {
void fill_with_secure_random(Bytes bytes)
{
auto const size = static_cast<int>(bytes.size());
if (RAND_bytes(bytes.data(), size) != 1)
VERIFY_NOT_REACHED();
}
}

15
Libraries/LibCrypto/SecureRandom.h Normal file
View file

@ -0,0 +1,15 @@
/*
* Copyright (c) 2024, the Ladybird developers.
*
* SPDX-License-Identifier: BSD-2-Clause
*/
#pragma once
#include <AK/Span.h>
namespace Crypto {
void fill_with_secure_random(Bytes);
}

1
Meta/gn/secondary/Userland/Libraries/LibCrypto/BUILD.gn
View file

@ -39,5 +39,6 @@ shared_library("LibCrypto") {
"Hash/SHA2.cpp", "Hash/SHA2.cpp",
"NumberTheory/ModularFunctions.cpp", "NumberTheory/ModularFunctions.cpp",
"PK/RSA.cpp", "PK/RSA.cpp",
"SecureRandom.cpp",
] ]
} }