Home Explore Help
Sign In
cpp
/
ZeroTierOne
mirror of https://github.com/zerotier/ZeroTierOne
2
0
Fork 0
Files Issues 0 Wiki
Tree: 1.4.6
Branches Tags
ZeroTierOne
/
node
/
Utils.cpp

Utils.cpp 4.4 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161 
  1. /*
    2. 

  2.  * Copyright (c)2019 ZeroTier, Inc.
    3. 

  3.  *
    4. 

  4.  * Use of this software is governed by the Business Source License included
    5. 

  5.  * in the LICENSE.TXT file in the project's root directory.
    6. 

  6.  *
    7. 

  7.  * Change Date: 2023-01-01
    8. 

  8.  *
    9. 

  9.  * On the date above, in accordance with the Business Source License, use
    10. 

  10.  * of this software will be governed by version 2.0 of the Apache License.
    11. 

  11.  */
    12. 

  12. /****/
    13. 

  13. 

  14. #include <stdio.h>
    15. 

  15. #include <string.h>
    16. 

  16. #include <stdlib.h>
    17. 

  17. #include <stdarg.h>
    18. 

  18. #include <time.h>
    19. 

  19. #include <sys/stat.h>
    20. 

  20. 

  21. #include "Constants.hpp"
    22. 

  22. 

  23. #ifdef __UNIX_LIKE__
    24. 

  24. #include <unistd.h>
    25. 

  25. #include <errno.h>
    26. 

  26. #include <fcntl.h>
    27. 

  27. #include <sys/types.h>
    28. 

  28. #include <sys/stat.h>
    29. 

  29. #include <sys/uio.h>
    30. 

  30. #include <dirent.h>
    31. 

  31. #endif
    32. 

  32. 

  33. #ifdef __WINDOWS__
    34. 

  34. #include <wincrypt.h>
    35. 

  35. #endif
    36. 

  36. 

  37. #include "Utils.hpp"
    38. 

  38. #include "Mutex.hpp"
    39. 

  39. #include "Salsa20.hpp"
    40. 

  40. 

  41. namespace ZeroTier {
    42. 

  42. 

  43. const char Utils::HEXCHARS[16] = { '0','1','2','3','4','5','6','7','8','9','a','b','c','d','e','f' };
    44. 

  44. 

  45. // Crazy hack to force memory to be securely zeroed in spite of the best efforts of optimizing compilers.
    46. 

  46. static void _Utils_doBurn(volatile uint8_t *ptr,unsigned int len)
    47. 

  47. {
    48. 

  48. 	volatile uint8_t *const end = ptr + len;
    49. 

  49. 	while (ptr != end) *(ptr++) = (uint8_t)0;
    50. 

  50. }
    51. 

  51. static void (*volatile _Utils_doBurn_ptr)(volatile uint8_t *,unsigned int) = _Utils_doBurn;
    52. 

  52. void Utils::burn(void *ptr,unsigned int len) { (_Utils_doBurn_ptr)((volatile uint8_t *)ptr,len); }
    53. 

  53. 

  54. static unsigned long _Utils_itoa(unsigned long n,char *s)
    55. 

  55. {
    56. 

  56. 	if (n == 0)
    57. 

  57. 		return 0;
    58. 

  58. 	unsigned long pos = _Utils_itoa(n / 10,s);
    59. 

  59. 	if (pos >= 22) // sanity check, should be impossible
    60. 

  60. 		pos = 22;
    61. 

  61. 	s[pos] = '0' + (char)(n % 10);
    62. 

  62. 	return pos + 1;
    63. 

  63. }
    64. 

  64. char *Utils::decimal(unsigned long n,char s[24])
    65. 

  65. {
    66. 

  66. 	if (n == 0) {
    67. 

  67. 		s[0] = '0';
    68. 

  68. 		s[1] = (char)0;
    69. 

  69. 		return s;
    70. 

  70. 	}
    71. 

  71. 	s[_Utils_itoa(n,s)] = (char)0;
    72. 

  72. 	return s;
    73. 

  73. }
    74. 

  74. 

  75. void Utils::getSecureRandom(void *buf,unsigned int bytes)
    76. 

  76. {
    77. 

  77. 	static Mutex globalLock;
    78. 

  78. 	static Salsa20 s20;
    79. 

  79. 	static bool s20Initialized = false;
    80. 

  80. 	static uint8_t randomBuf[65536];
    81. 

  81. 	static unsigned int randomPtr = sizeof(randomBuf);
    82. 

  82. 

  83. 	Mutex::Lock _l(globalLock);
    84. 

  84. 

  85. 	/* Just for posterity we Salsa20 encrypt the result of whatever system
    86. 

  86. 	 * CSPRNG we use. There have been several bugs at the OS or OS distribution
    87. 

  87. 	 * level in the past that resulted in systematically weak or predictable
    88. 

  88. 	 * keys due to random seeding problems. This mitigates that by grabbing
    89. 

  89. 	 * a bit of extra entropy and further randomizing the result, and comes
    90. 

  90. 	 * at almost no cost and with no real downside if the random source is
    91. 

  91. 	 * good. */
    92. 

  92. 	if (!s20Initialized) {
    93. 

  93. 		s20Initialized = true;
    94. 

  94. 		uint64_t s20Key[4];
    95. 

  95. 		s20Key[0] = (uint64_t)time(0); // system clock
    96. 

  96. 		s20Key[1] = (uint64_t)buf; // address of buf
    97. 

  97. 		s20Key[2] = (uint64_t)s20Key; // address of s20Key[]
    98. 

  98. 		s20Key[3] = (uint64_t)&s20; // address of s20
    99. 

  99. 		s20.init(s20Key,s20Key);
    100. 

  100. 	}
    101. 

  101. 

  102. #ifdef __WINDOWS__
    103. 

  103. 

  104. 	static HCRYPTPROV cryptProvider = NULL;
    105. 

  105. 

  106. 	for(unsigned int i=0;i<bytes;++i) {
    107. 

  107. 		if (randomPtr >= sizeof(randomBuf)) {
    108. 

  108. 			if (cryptProvider == NULL) {
    109. 

  109. 				if (!CryptAcquireContextA(&cryptProvider,NULL,NULL,PROV_RSA_FULL,CRYPT_VERIFYCONTEXT|CRYPT_SILENT)) {
    110. 

  110. 					fprintf(stderr,"FATAL ERROR: Utils::getSecureRandom() unable to obtain WinCrypt context!\r\n");
    111. 

  111. 					exit(1);
    112. 

  112. 				}
    113. 

  113. 			}
    114. 

  114. 			if (!CryptGenRandom(cryptProvider,(DWORD)sizeof(randomBuf),(BYTE *)randomBuf)) {
    115. 

  115. 				fprintf(stderr,"FATAL ERROR: Utils::getSecureRandom() CryptGenRandom failed!\r\n");
    116. 

  116. 				exit(1);
    117. 

  117. 			}
    118. 

  118. 			randomPtr = 0;
    119. 

  119. 			s20.crypt12(randomBuf,randomBuf,sizeof(randomBuf));
    120. 

  120. 			s20.init(randomBuf,randomBuf);
    121. 

  121. 		}
    122. 

  122. 		((uint8_t *)buf)[i] = randomBuf[randomPtr++];
    123. 

  123. 	}
    124. 

  124. 

  125. #else // not __WINDOWS__
    126. 

  126. 

  127. 	static int devURandomFd = -1;
    128. 

  128. 

  129. 	if (devURandomFd < 0) {
    130. 

  130. 		devURandomFd = ::open("/dev/urandom",O_RDONLY);
    131. 

  131. 		if (devURandomFd < 0) {
    132. 

  132. 			fprintf(stderr,"FATAL ERROR: Utils::getSecureRandom() unable to open /dev/urandom\n");
    133. 

  133. 			exit(1);
    134. 

  134. 			return;
    135. 

  135. 		}
    136. 

  136. 	}
    137. 

  137. 

  138. 	for(unsigned int i=0;i<bytes;++i) {
    139. 

  139. 		if (randomPtr >= sizeof(randomBuf)) {
    140. 

  140. 			for(;;) {
    141. 

  141. 				if ((int)::read(devURandomFd,randomBuf,sizeof(randomBuf)) != (int)sizeof(randomBuf)) {
    142. 

  142. 					::close(devURandomFd);
    143. 

  143. 					devURandomFd = ::open("/dev/urandom",O_RDONLY);
    144. 

  144. 					if (devURandomFd < 0) {
    145. 

  145. 						fprintf(stderr,"FATAL ERROR: Utils::getSecureRandom() unable to open /dev/urandom\n");
    146. 

  146. 						exit(1);
    147. 

  147. 						return;
    148. 

  148. 					}
    149. 

  149. 				} else break;
    150. 

  150. 			}
    151. 

  151. 			randomPtr = 0;
    152. 

  152. 			s20.crypt12(randomBuf,randomBuf,sizeof(randomBuf));
    153. 

  153. 			s20.init(randomBuf,randomBuf);
    154. 

  154. 		}
    155. 

  155. 		((uint8_t *)buf)[i] = randomBuf[randomPtr++];
    156. 

  156. 	}
    157. 

  157. 

  158. #endif // __WINDOWS__ or not
    159. 

  159. }
    160. 

  160. 

  161. } // namespace ZeroTier
    162.