mirror
/
oragono
ミラー元 https://github.com/oragono/oragono
ウォッチ 1
スター 0
フォーク 0
コード 課題 0 リリース 70 Wiki アクティビティ
選択できるのは25トピックまでです。 トピックは、先頭が英数字で、英数字とダッシュ('-')を使用した35文字以内のものにしてください。
2363 コミット
21 ブランチ
ツリー: b717402b5e
ブランチ タグ
${ item.name }
ブランチ ${ searchTerm } を作成
'b717402b5e' から
${ noResults }
oragono/irc/utils/crypto.go

crypto.go 2.5KB
履歴 Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283 
  1. // Copyright (c) 2018 Shivaram Lingamneni <slingamn@cs.stanford.edu>

  2. // released under the MIT license

  3. 

  4. package utils

  5. 

  6. import (

  7. 	"crypto/rand"

  8. 	"crypto/subtle"

  9. 	"encoding/base32"

  10. 	"encoding/base64"

  11. 	"strings"

  12. )

  13. 

  14. var (

  15. 	// slingamn's own private b32 alphabet, removing 1, l, o, and 0

  16. 	B32Encoder = base32.NewEncoding("abcdefghijkmnpqrstuvwxyz23456789").WithPadding(base32.NoPadding)

  17. )

  18. 

  19. const (

  20. 	SecretTokenLength = 26

  21. )

  22. 

  23. // generate a secret token that cannot be brute-forced via online attacks

  24. func GenerateSecretToken() string {

  25. 	// 128 bits of entropy are enough to resist any online attack:

  26. 	var buf [16]byte

  27. 	rand.Read(buf[:])

  28. 	// 26 ASCII characters, should be fine for most purposes

  29. 	return B32Encoder.EncodeToString(buf[:])

  30. }

  31. 

  32. // "munge" a secret token to a new value. requirements:

  33. // 1. MUST be roughly as unlikely to collide with `GenerateSecretToken` outputs

  34. // as those outputs are with each other

  35. // 2. SHOULD be deterministic (motivation: if a JOIN line has msgid x,

  36. // create a deterministic msgid y for the fake HistServ PRIVMSG that "replays" it)

  37. // 3. SHOULD be in the same "namespace" as `GenerateSecretToken` outputs

  38. // (same length and character set)

  39. func MungeSecretToken(token string) (result string) {

  40. 	bytes, err := B32Encoder.DecodeString(token)

  41. 	if err != nil {

  42. 		// this should never happen

  43. 		return GenerateSecretToken()

  44. 	}

  45. 	// add 1 with carrying

  46. 	for i := len(bytes) - 1; 0 <= i; i -= 1 {

  47. 		bytes[i] += 1

  48. 		if bytes[i] != 0 {

  49. 			break

  50. 		} // else: overflow, carry to the next place

  51. 	}

  52. 	return B32Encoder.EncodeToString(bytes)

  53. }

  54. 

  55. // securely check if a supplied token matches a stored token

  56. func SecretTokensMatch(storedToken string, suppliedToken string) bool {

  57. 	// XXX fix a potential gotcha: if the stored token is uninitialized,

  58. 	// then nothing should match it, not even supplying an empty token.

  59. 	if len(storedToken) == 0 {

  60. 		return false

  61. 	}

  62. 

  63. 	return subtle.ConstantTimeCompare([]byte(storedToken), []byte(suppliedToken)) == 1

  64. }

  65. 

  66. // generate a 256-bit secret key that can be written into a config file

  67. func GenerateSecretKey() string {

  68. 	var buf [32]byte

  69. 	rand.Read(buf[:])

  70. 	return base64.RawURLEncoding.EncodeToString(buf[:])

  71. }

  72. 

  73. func normalizeCertfp(certfp string) string {

  74. 	return strings.ToLower(strings.Replace(certfp, ":", "", -1))

  75. }

  76. 

  77. // Convenience to compare certfps as returned by different tools, e.g., openssl vs. oragono

  78. func CertfpsMatch(storedCertfp, suppliedCertfp string) bool {

  79. 	if storedCertfp == "" {

  80. 		return false

  81. 	}

  82. 	return normalizeCertfp(storedCertfp) == normalizeCertfp(suppliedCertfp)

  83. }