feedc0de/wolfssl
1
0
Fork 0
forked from wolfSSL/wolfssl
Code Pull Requests Activity

Fixes a serious bug in Random.byte

Browse Source 
Python's bytecode compiler has a peephole optimizer which, among other things, can recognize constant expressions and replace them with a constant.

In `Random.byte` the expression `t2b('\0')` is recognized as a constant and is replaced with a single constant compiled into the function's bytecode.

This means that every time you run `Random.byte`, rather than creating a new `str` object (or `bytes` in Python 3) it's reusing the same one each time, and `wc_RNG_GenerateByte` is writing right into that constant object's buffer; hence the following behavior:

```
In [55]: rng = Random()

In [56]: a = rng.byte()

In [57]: a
Out[57]: "'"

In [58]: rng.byte()
Out[58]: '\x11'

In [59]: a
Out[59]: '\x11'

In [60]: rng.byte()
Out[60]: '\x16'

In [61]: a
Out[61]: '\x16'

In [62]: rng.byte.__func__.__code__.co_consts
Out[62]:
('\n        Generate and return a random byte.\n        ',
 '\x16',
 0,
 'RNG generate byte error (%d)')

In [63]: rng.byte()
Out[63]: '\xad'

In [64]: rng.byte.__func__.__code__.co_consts
Out[64]:
('\n        Generate and return a random byte.\n        ',
 '\xad',
 0,
 'RNG generate byte error (%d)')
```

`Random.bytes` does not necessarily have this problem since its result buffer is not a constant expression, though I feel like it could also in principle be affected if the string were interned (though I couldn't produce such a result). Nevertheless, it doesn't seem like a good idea to be updating `str` objects' buffers directly.
This commit is contained in:
Erik Bray
2017-01-26 20:48:15 +01:00
committed by GitHub
parent d22bc5d347
commit e96a720f04
1 changed files with 4 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
wrapper/python/wolfcrypt/wolfcrypt/random.py
View File

@@ -46,23 +46,23 @@ class Random(object):
""" """
Generate and return a random byte. Generate and return a random byte.
""" """
result = t2b("\0") result = _ffi.new('byte[1]')
ret = _lib.wc_RNG_GenerateByte(self.native_object, result) ret = _lib.wc_RNG_GenerateByte(self.native_object, result)
if ret < 0: if ret < 0:
raise WolfCryptError("RNG generate byte error (%d)" % ret) raise WolfCryptError("RNG generate byte error (%d)" % ret)
return result return _ffi.string(result, 1)
def bytes(self, length): def bytes(self, length):
""" """
Generate and return a random sequence of length bytes. Generate and return a random sequence of length bytes.
""" """
result = t2b("\0" * length) result = _ffi.new('byte[%d]' % length)
ret = _lib.wc_RNG_GenerateBlock(self.native_object, result, length) ret = _lib.wc_RNG_GenerateBlock(self.native_object, result, length)
if ret < 0: if ret < 0:
raise WolfCryptError("RNG generate block error (%d)" % ret) raise WolfCryptError("RNG generate block error (%d)" % ret)
return result return _ffi.string(result, length)