Home Explore Help
Sign In
golang
/
netmaker
mirror of https://github.com/gravitl/netmaker
2
0
Fork 0
Files Issues 0 Wiki
Browse Source

Merge pull request #908 from gravitl/dev-csprng

logic/accesskeys: math.Rand -> crypto.Rand
dcarns 3 years ago
parent
07fb4a679a c71c739ba2
commit
a76ac63de0
4 changed files with 54 additions and 30 deletions
Split View Show Diff Stats
  1. 3 3
      go.mod
  2. 6 4
      go.sum
  3. 22 23
      logic/accesskeys.go
  4. 23 0
      logic/accesskeys_test.go

+ 3 - 3
go.mod
View File 

@@ -20,7 +20,7 @@ require (
 
 	golang.org/x/crypto v0.0.0-20211215153901-e495a2d5b3d3
 
 	golang.org/x/net v0.0.0-20211112202133-69e39bad7dc2 // indirect
 
 	golang.org/x/oauth2 v0.0.0-20200107190931-bf48bf16ab8d
 
-	golang.org/x/sys v0.0.0-20210831042530-f4d43177bf5e // indirect
 
+	golang.org/x/sys v0.0.0-20210903071746-97244b99971b // indirect
 
 	golang.org/x/text v0.3.7 // indirect
 
 	golang.zx2c4.com/wireguard v0.0.0-20210805125648-3957e9b9dd19 // indirect
 
 	golang.zx2c4.com/wireguard/wgctrl v0.0.0-20210913210325-91d1988e44de
 
@@ -50,7 +50,7 @@ require (
 
 	github.com/go-playground/locales v0.14.0 // indirect
 
 	github.com/go-playground/universal-translator v0.18.0 // indirect
 
 	github.com/gogo/protobuf v1.3.1 // indirect
 
-	github.com/google/go-cmp v0.5.5 // indirect
 
+	github.com/google/go-cmp v0.5.6 // indirect
 
 	github.com/gorilla/websocket v1.4.2 // indirect
 
 	github.com/josharian/native v0.0.0-20200817173448-b6b71def0850 // indirect
 
 	github.com/leodido/go-urn v1.2.1 // indirect
 
@@ -66,5 +66,5 @@ require (
 
 	github.com/xtgo/uuid v0.0.0-20140804021211-a0b114877d4c // indirect
 
 	golang.org/x/sync v0.0.0-20210220032951-036812b2e83c // indirect
 
 	google.golang.org/appengine v1.4.0 // indirect
 
-	gopkg.in/yaml.v2 v2.3.0 // indirect
 
+	gopkg.in/yaml.v2 v2.4.0 // indirect
 
 )

+ 6 - 4
go.sum
View File 

@@ -104,8 +104,9 @@ github.com/google/go-cmp v0.4.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/
 
 github.com/google/go-cmp v0.5.0/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 
 github.com/google/go-cmp v0.5.2/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 
 github.com/google/go-cmp v0.5.4/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 
-github.com/google/go-cmp v0.5.5 h1:Khx7svrCpmxxtHBq5j2mp/xVjsi8hQMfNLvJFAlrGgU=
 
 github.com/google/go-cmp v0.5.5/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 
+github.com/google/go-cmp v0.5.6 h1:BKbKCqvP6I+rmFHt06ZmyQtvB8xAkWdhFyr0ZUNZcxQ=
 
+github.com/google/go-cmp v0.5.6/go.mod h1:v8dTdLbMG2kIc/vJvl+f65V22dbkXbowE6jgT/gNBxE=
 
 github.com/google/uuid v1.1.2/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 
 github.com/google/uuid v1.2.0/go.mod h1:TIyPZe4MgqvfeYDBFedMoGGpEw/LqOeaOT+nhxU+yHo=
 
 github.com/google/uuid v1.3.0 h1:t6JiXgmwXMjEs8VusXIJk2BXHsn+wx8BZdTaoZ5fu7I=
 
@@ -348,8 +349,8 @@ golang.org/x/sys v0.0.0-20210423082822-04245dca01da/go.mod h1:h1NjWce9XRLGQEsW7w
 
 golang.org/x/sys v0.0.0-20210503173754-0981d6026fa6/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 
 golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 
 golang.org/x/sys v0.0.0-20210806184541-e5e7981a1069/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 
-golang.org/x/sys v0.0.0-20210831042530-f4d43177bf5e h1:XMgFehsDnnLGtjvjOfqWSUzt0alpTR1RSEuznObga2c=
 
-golang.org/x/sys v0.0.0-20210831042530-f4d43177bf5e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 
+golang.org/x/sys v0.0.0-20210903071746-97244b99971b h1:3Dq0eVHn0uaQJmPO+/aYPI/fRMqdrVDbu7MQcku54gg=
 
+golang.org/x/sys v0.0.0-20210903071746-97244b99971b/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 
 golang.org/x/term v0.0.0-20201117132131-f5c789dd3221/go.mod h1:Nr5EML6q2oocZ2LXRh80K7BxOlk5/8JxuGnuhpl+muw=
 
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 
 golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
 
@@ -419,8 +420,9 @@ gopkg.in/yaml.v2 v2.0.0-20170812160011-eb3733d160e7/go.mod h1:JAlM8MvJe8wmxCU4Bl
 
 gopkg.in/yaml.v2 v2.2.1/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 
 gopkg.in/yaml.v2 v2.2.2/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 
 gopkg.in/yaml.v2 v2.2.3/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 
-gopkg.in/yaml.v2 v2.3.0 h1:clyUAQHOM3G0M3f5vQj7LuJrETvjVot3Z5el9nffUtU=
 
 gopkg.in/yaml.v2 v2.3.0/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 
+gopkg.in/yaml.v2 v2.4.0 h1:D8xgwECY7CYvx+Y2n4sBz93Jn9JRvxdiyyo8CTfuKaY=
 
+gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ=
 
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 
 gopkg.in/yaml.v3 v3.0.0-20200615113413-eeeca48fe776/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 
 gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b h1:h8qDotaEPuJATrMmW04NCwg7v22aHH28wwpauUhK9Oo=

+ 22 - 23
logic/accesskeys.go
View File 

@@ -1,11 +1,13 @@
 
 package logic
 
 
 import (
 
+	"crypto/rand"
 
 	"encoding/base64"
 
 	"encoding/json"
 
 	"errors"
 
-	"math/rand"
 
-	"time"
 
+	"math/big"
 
+	"strings"
 
+	"sync"
 
 
 	"github.com/go-playground/validator/v10"
 
 	"github.com/gravitl/netmaker/database"
 
@@ -214,34 +216,31 @@ func RemoveKeySensitiveInfo(keys []models.AccessKey) []models.AccessKey {
 
 	return returnKeys
 
 }
 
 
-// == private methods ==
 
+const (
 
+	maxr string = "ff578f57c15bb743beaa77d27637e02b598dffa9aebd15889187fe6eb3bdca516c3fa1a52eabef31f33b4b8c2e5b5524f1aa4f3329393912f40dbbe23d7f39723e0be05b6696b11f8eea0abe365a11d9f2735ac7e5b4e015ab19b35b84893685b37a9a0a62a566d6571d7e00d4241687f5c804f37cde9bf311c0781f51cc007c5a01a94f6cfcecea640b8e9ab7bd43e73e5df5d0e1eeb4d9b6cc44be67b7cad80808b17869561b579ffe0bbdeca5c83139e458000000000000000000000000000000000000000000000000000000000000000"
 
+)
 
 
-func genKeyName() string {
 
+var (
 
+	uno        sync.Once
 
+	maxentropy *big.Int
 
+)
 
 
-	var seededRand *rand.Rand = rand.New(
 
-		rand.NewSource(time.Now().UnixNano()))
 
+func init() {
 
+	uno.Do(func() {
 
+		maxentropy, _ = new(big.Int).SetString(maxr, 16)
 
+	})
 
+}
 
 
-	length := 5
 
+// == private methods ==
 
 
-	b := make([]byte, length)
 
-	for i := range b {
 
-		b[i] = charset[seededRand.Intn(len(charset))]
 
-	}
 
-	return "key" + string(b)
 
+func genKeyName() string {
 
+	entropy, _ := rand.Int(rand.Reader, maxentropy)
 
+	return strings.Join([]string{"key", entropy.Text(16)[:16]}, "-")
 
 }
 
 
 func genKey() string {
 
-
 
-	var seededRand *rand.Rand = rand.New(
 
-		rand.NewSource(time.Now().UnixNano()))
 
-
 
-	length := 16
 
-
 
-	b := make([]byte, length)
 
-	for i := range b {
 
-		b[i] = charset[seededRand.Intn(len(charset))]
 
-	}
 
-	return string(b)
 
+	entropy, _ := rand.Int(rand.Reader, maxentropy)
 
+	return entropy.Text(16)[:16]
 
 }
 
 
 func getAllAccessKeys() []models.AccessKey {

+ 23 - 0
logic/accesskeys_test.go
View File 

@@ -0,0 +1,23 @@
 
+package logic
 
+
 
+import "testing"
 
+
 
+func Test_genKeyName(t *testing.T) {
 
+	for i := 0; i < 100; i++ {
 
+		kname := genKeyName()
 
+		t.Log(kname)
 
+		if len(kname) != 20 {
 
+			t.Fatalf("improper length of key name, expected 20 got :%d", len(kname))
 
+		}
 
+	}
 
+}
 
+
 
+func Test_genKey(t *testing.T) {
 
+	for i := 0; i < 100; i++ {
 
+		kname := genKey()
 
+		t.Log(kname)
 
+		if len(kname) != 16 {
 
+			t.Fatalf("improper length of key name, expected 16 got :%d", len(kname))
 
+		}
 
+	}
 
+}