diff options
| author | Andrew Arnott <andrewarnott@gmail.com> | 2012-12-25 16:56:08 -0800 |
|---|---|---|
| committer | Andrew Arnott <andrewarnott@gmail.com> | 2012-12-25 16:56:08 -0800 |
| commit | 6e348d7ac6fa26f9d1398dd7d2fcf71a5506c69f (patch) | |
| tree | 1790227bd2f6377b8403b2b628fe26e30597bb91 /src/DotNetOpenAuth.Core/Messaging | |
| parent | e95fd9bcd6dbfd4f40056847dde54f600d7144a1 (diff) | |
| download | DotNetOpenAuth-6e348d7ac6fa26f9d1398dd7d2fcf71a5506c69f.zip DotNetOpenAuth-6e348d7ac6fa26f9d1398dd7d2fcf71a5506c69f.tar.gz DotNetOpenAuth-6e348d7ac6fa26f9d1398dd7d2fcf71a5506c69f.tar.bz2 | |
Mitigates timing attack on random number generator.
Diffstat (limited to 'src/DotNetOpenAuth.Core/Messaging')
| -rw-r--r-- | src/DotNetOpenAuth.Core/Messaging/MessagingUtilities.cs | 32 |
1 files changed, 28 insertions, 4 deletions
diff --git a/src/DotNetOpenAuth.Core/Messaging/MessagingUtilities.cs b/src/DotNetOpenAuth.Core/Messaging/MessagingUtilities.cs index 2e72c97..88ad4d7 100644 --- a/src/DotNetOpenAuth.Core/Messaging/MessagingUtilities.cs +++ b/src/DotNetOpenAuth.Core/Messaging/MessagingUtilities.cs @@ -43,6 +43,13 @@ namespace DotNetOpenAuth.Messaging { /// <summary> /// A pseudo-random data generator (NOT cryptographically strong random data) /// </summary> + /// <remarks> + /// The random number generator is NOT thread-safe, and any calls to it should be within a lock on this very object. + /// This is NOT using thread-local techniques to avoid locking because it's important that we use the same <see cref="Random"/> + /// instance even across threads. The reason for this is so that if two clients (an attacker and a victim) call in + /// simultaneously, we don't want to generate the same random values to each of them, which might occur if they used + /// different instances of Random. + /// </remarks> internal static readonly Random NonCryptoRandomDataGenerator = new Random(); /// <summary> @@ -646,7 +653,10 @@ namespace DotNetOpenAuth.Messaging { /// <returns>The generated values, which may contain zeros.</returns> internal static byte[] GetNonCryptoRandomData(int length) { byte[] buffer = new byte[length]; - NonCryptoRandomDataGenerator.NextBytes(buffer); + lock (NonCryptoRandomDataGenerator) { + NonCryptoRandomDataGenerator.NextBytes(buffer); + } + return buffer; } @@ -662,7 +672,7 @@ namespace DotNetOpenAuth.Messaging { } /// <summary> - /// Gets a cryptographically strong random sequence of values. + /// Gets a cryptographically strong random string of base64 characters. /// </summary> /// <param name="binaryLength">The length of the byte sequence to generate.</param> /// <returns>A base64 encoding of the generated random data, @@ -674,6 +684,18 @@ namespace DotNetOpenAuth.Messaging { } /// <summary> + /// Gets a NON-cryptographically strong random string of base64 characters. + /// </summary> + /// <param name="binaryLength">The length of the byte sequence to generate.</param> + /// <returns>A base64 encoding of the generated random data, + /// whose length in characters will likely be greater than <paramref name="binaryLength"/>.</returns> + internal static string GetNonCryptoRandomDataAsBase64(int binaryLength) { + byte[] uniq_bytes = GetNonCryptoRandomData(binaryLength); + string uniq = Convert.ToBase64String(uniq_bytes); + return uniq; + } + + /// <summary> /// Gets a random string made up of a given set of allowable characters. /// </summary> /// <param name="length">The length of the desired random string.</param> @@ -684,8 +706,10 @@ namespace DotNetOpenAuth.Messaging { Requires.True(allowableCharacters != null && allowableCharacters.Length >= 2, "allowableCharacters"); char[] randomString = new char[length]; - for (int i = 0; i < length; i++) { - randomString[i] = allowableCharacters[NonCryptoRandomDataGenerator.Next(allowableCharacters.Length)]; + lock (NonCryptoRandomDataGenerator) { + for (int i = 0; i < length; i++) { + randomString[i] = allowableCharacters[NonCryptoRandomDataGenerator.Next(allowableCharacters.Length)]; + } } return new string(randomString); |