From 2d9c3cc89d602b4cf35586dd568b3d9381fc0ebc Mon Sep 17 00:00:00 2001 From: Ben Noordhuis Date: Fri, 18 May 2018 11:05:20 +0200 Subject: [PATCH] crypto: refactor randomBytes() MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Use the scrypt() infrastructure to reimplement randomBytes() and randomFill() in a simpler manner. PR-URL: https://github.com/nodejs/node/pull/20816 Reviewed-By: Anna Henningsen Reviewed-By: Colin Ihrig Reviewed-By: James M Snell Reviewed-By: Tobias Nießen --- lib/internal/crypto/random.js | 42 +++- src/env.h | 1 - src/node_crypto.cc | 231 +++--------------- test/sequential/test-async-wrap-getasyncid.js | 2 +- 4 files changed, 65 insertions(+), 211 deletions(-) diff --git a/lib/internal/crypto/random.js b/lib/internal/crypto/random.js index 9f444cdcb7aac8..b4812d606c02fd 100644 --- a/lib/internal/crypto/random.js +++ b/lib/internal/crypto/random.js @@ -1,15 +1,14 @@ 'use strict'; +const { AsyncWrap, Providers } = process.binding('async_wrap'); +const { Buffer } = require('buffer'); +const { randomBytes: _randomBytes } = process.binding('crypto'); const { ERR_INVALID_ARG_TYPE, ERR_INVALID_CALLBACK, ERR_OUT_OF_RANGE } = require('internal/errors').codes; const { isArrayBufferView } = require('internal/util/types'); -const { - randomBytes: _randomBytes, - randomFill: _randomFill -} = process.binding('crypto'); const { kMaxLength } = require('buffer'); const kMaxUint32 = Math.pow(2, 32) - 1; @@ -27,7 +26,7 @@ function assertOffset(offset, elementSize, length) { throw new ERR_OUT_OF_RANGE('offset', `>= 0 && <= ${maxLength}`, offset); } - return offset; + return offset >>> 0; // Convert to uint32. } function assertSize(size, elementSize, offset, length) { @@ -46,14 +45,25 @@ function assertSize(size, elementSize, offset, length) { throw new ERR_OUT_OF_RANGE('size + offset', `<= ${length}`, size + offset); } - return size; + return size >>> 0; // Convert to uint32. } function randomBytes(size, cb) { - assertSize(size, 1, 0, Infinity); + size = assertSize(size, 1, 0, Infinity); if (cb !== undefined && typeof cb !== 'function') throw new ERR_INVALID_CALLBACK(); - return _randomBytes(size, cb); + + const buf = Buffer.alloc(size); + + if (!cb) return handleError(buf, 0, size); + + const wrap = new AsyncWrap(Providers.RANDOMBYTESREQUEST); + wrap.ondone = (ex) => { // Retains buf while request is in flight. + if (ex) return cb.call(wrap, ex); + cb.call(wrap, null, buf); + }; + + _randomBytes(buf, 0, size, wrap); } function randomFillSync(buf, offset = 0, size) { @@ -71,7 +81,7 @@ function randomFillSync(buf, offset = 0, size) { size = assertSize(size, elementSize, offset, buf.byteLength); } - return _randomFill(buf, offset, size); + return handleError(buf, offset, size); } function randomFill(buf, offset, size, cb) { @@ -100,7 +110,19 @@ function randomFill(buf, offset, size, cb) { size = assertSize(size, elementSize, offset, buf.byteLength); } - return _randomFill(buf, offset, size, cb); + const wrap = new AsyncWrap(Providers.RANDOMBYTESREQUEST); + wrap.ondone = (ex) => { // Retains buf while request is in flight. + if (ex) return cb.call(wrap, ex); + cb.call(wrap, null, buf); + }; + + _randomBytes(buf, offset, size, wrap); +} + +function handleError(buf, offset, size) { + const ex = _randomBytes(buf, offset, size); + if (ex) throw ex; + return buf; } module.exports = { diff --git a/src/env.h b/src/env.h index acc83f2bed9c51..1a96abe106a752 100644 --- a/src/env.h +++ b/src/env.h @@ -344,7 +344,6 @@ struct PackageConfig { V(promise_reject_unhandled_function, v8::Function) \ V(promise_wrap_template, v8::ObjectTemplate) \ V(push_values_to_array_function, v8::Function) \ - V(randombytes_constructor_template, v8::ObjectTemplate) \ V(sab_lifetimepartner_constructor_template, v8::FunctionTemplate) \ V(script_context_constructor_template, v8::FunctionTemplate) \ V(script_data_constructor_function, v8::Function) \ diff --git a/src/node_crypto.cc b/src/node_crypto.cc index f6cbc533085488..f5d42a2baf1ef1 100644 --- a/src/node_crypto.cc +++ b/src/node_crypto.cc @@ -82,7 +82,6 @@ using v8::NewStringType; using v8::Nothing; using v8::Null; using v8::Object; -using v8::ObjectTemplate; using v8::PropertyAttribute; using v8::ReadOnly; using v8::Signature; @@ -4589,208 +4588,50 @@ inline void CopyBuffer(Local buf, std::vector* vec) { } -// Only instantiate within a valid HandleScope. -class RandomBytesRequest : public AsyncWrap, public ThreadPoolWork { - public: - enum FreeMode { FREE_DATA, DONT_FREE_DATA }; - - RandomBytesRequest(Environment* env, - Local object, - size_t size, - char* data, - FreeMode free_mode) - : AsyncWrap(env, object, AsyncWrap::PROVIDER_RANDOMBYTESREQUEST), - ThreadPoolWork(env), - error_(0), - size_(size), - data_(data), - free_mode_(free_mode) { - } - - inline size_t size() const { - return size_; - } - - inline char* data() const { - return data_; - } - - inline void set_data(char* data) { - data_ = data; - } +struct RandomBytesJob : public CryptoJob { + unsigned char* data; + size_t size; + CryptoErrorVector errors; + Maybe rc; - inline void release() { - size_ = 0; - if (free_mode_ == FREE_DATA) { - free(data_); - data_ = nullptr; - } - } + inline explicit RandomBytesJob(Environment* env) + : CryptoJob(env), rc(Nothing()) {} - inline void return_memory(char** d, size_t* len) { - *d = data_; - data_ = nullptr; - *len = size_; - size_ = 0; + inline void DoThreadPoolWork() override { + CheckEntropy(); // Ensure that OpenSSL's PRNG is properly seeded. + rc = Just(RAND_bytes(data, size)); + if (0 == rc.FromJust()) errors.Capture(); } - inline unsigned long error() const { // NOLINT(runtime/int) - return error_; + inline void AfterThreadPoolWork() override { + Local arg = ToResult(); + async_wrap->MakeCallback(env->ondone_string(), 1, &arg); } - inline void set_error(unsigned long err) { // NOLINT(runtime/int) - error_ = err; + inline Local ToResult() const { + if (errors.empty()) return Undefined(env->isolate()); + return errors.ToException(env); } - - size_t self_size() const override { return sizeof(*this); } - - void DoThreadPoolWork() override; - void AfterThreadPoolWork(int status) override; - - private: - unsigned long error_; // NOLINT(runtime/int) - size_t size_; - char* data_; - const FreeMode free_mode_; }; -void RandomBytesRequest::DoThreadPoolWork() { - // Ensure that OpenSSL's PRNG is properly seeded. - CheckEntropy(); - - const int r = RAND_bytes(reinterpret_cast(data_), size_); - - // RAND_bytes() returns 0 on error. - if (r == 0) { - set_error(ERR_get_error()); // NOLINT(runtime/int) - } else if (r == -1) { - set_error(static_cast(-1)); // NOLINT(runtime/int) - } -} - - -// don't call this function without a valid HandleScope -void RandomBytesCheck(RandomBytesRequest* req, Local (*argv)[2]) { - if (req->error()) { - char errmsg[256] = "Operation not supported"; - - if (req->error() != static_cast(-1)) // NOLINT(runtime/int) - ERR_error_string_n(req->error(), errmsg, sizeof errmsg); - - (*argv)[0] = Exception::Error(OneByteString(req->env()->isolate(), errmsg)); - (*argv)[1] = Null(req->env()->isolate()); - req->release(); - } else { - char* data = nullptr; - size_t size; - req->return_memory(&data, &size); - (*argv)[0] = Null(req->env()->isolate()); - Local buffer = - req->object()->Get(req->env()->context(), - req->env()->buffer_string()).ToLocalChecked(); - - if (buffer->IsArrayBufferView()) { - CHECK_LE(req->size(), Buffer::Length(buffer)); - char* buf = Buffer::Data(buffer); - memcpy(buf, data, req->size()); - (*argv)[1] = buffer; - } else { - (*argv)[1] = Buffer::New(req->env(), data, size) - .ToLocalChecked(); - } - } -} - - -void RandomBytesRequest::AfterThreadPoolWork(int status) { - std::unique_ptr req(this); - if (status == UV_ECANCELED) - return; - CHECK_EQ(status, 0); - HandleScope handle_scope(env()->isolate()); - Context::Scope context_scope(env()->context()); - Local argv[2]; - RandomBytesCheck(this, &argv); - MakeCallback(env()->ondone_string(), arraysize(argv), argv); -} - - -void RandomBytesProcessSync(Environment* env, - std::unique_ptr req, - Local (*argv)[2]) { - env->PrintSyncTrace(); - req->DoThreadPoolWork(); - RandomBytesCheck(req.get(), argv); - - if (!(*argv)[0]->IsNull()) - env->isolate()->ThrowException((*argv)[0]); -} - - void RandomBytes(const FunctionCallbackInfo& args) { + CHECK(args[0]->IsArrayBufferView()); // buffer; wrap object retains ref. + CHECK(args[1]->IsUint32()); // offset + CHECK(args[2]->IsUint32()); // size + CHECK(args[3]->IsObject() || args[3]->IsUndefined()); // wrap object + const uint32_t offset = args[1].As()->Value(); + const uint32_t size = args[2].As()->Value(); + CHECK_GE(offset + size, offset); // Overflow check. + CHECK_LE(offset + size, Buffer::Length(args[0])); // Bounds check. Environment* env = Environment::GetCurrent(args); - - const int64_t size = args[0]->IntegerValue(); - CHECK(size <= Buffer::kMaxLength); - - Local obj = env->randombytes_constructor_template()-> - NewInstance(env->context()).ToLocalChecked(); - char* data = node::Malloc(size); - std::unique_ptr req( - new RandomBytesRequest(env, - obj, - size, - data, - RandomBytesRequest::FREE_DATA)); - - if (args[1]->IsFunction()) { - obj->Set(env->context(), env->ondone_string(), args[1]).FromJust(); - - req.release()->ScheduleWork(); - args.GetReturnValue().Set(obj); - } else { - Local argv[2]; - RandomBytesProcessSync(env, std::move(req), &argv); - if (argv[0]->IsNull()) - args.GetReturnValue().Set(argv[1]); - } -} - - -void RandomBytesBuffer(const FunctionCallbackInfo& args) { - Environment* env = Environment::GetCurrent(args); - - CHECK(args[0]->IsArrayBufferView()); - CHECK(args[1]->IsUint32()); - CHECK(args[2]->IsUint32()); - - int64_t offset = args[1]->IntegerValue(); - int64_t size = args[2]->IntegerValue(); - - Local obj = env->randombytes_constructor_template()-> - NewInstance(env->context()).ToLocalChecked(); - obj->Set(env->context(), env->buffer_string(), args[0]).FromJust(); - char* data = Buffer::Data(args[0]); - data += offset; - - std::unique_ptr req( - new RandomBytesRequest(env, - obj, - size, - data, - RandomBytesRequest::DONT_FREE_DATA)); - if (args[3]->IsFunction()) { - obj->Set(env->context(), env->ondone_string(), args[3]).FromJust(); - - req.release()->ScheduleWork(); - args.GetReturnValue().Set(obj); - } else { - Local argv[2]; - RandomBytesProcessSync(env, std::move(req), &argv); - if (argv[0]->IsNull()) - args.GetReturnValue().Set(argv[1]); - } + std::unique_ptr job(new RandomBytesJob(env)); + job->data = reinterpret_cast(Buffer::Data(args[0])) + offset; + job->size = size; + if (args[3]->IsObject()) return RandomBytesJob::Run(std::move(job), args[3]); + env->PrintSyncTrace(); + job->DoThreadPoolWork(); + args.GetReturnValue().Set(job->ToResult()); } @@ -5355,7 +5196,6 @@ void Initialize(Local target, env->SetMethod(target, "pbkdf2", PBKDF2); env->SetMethod(target, "randomBytes", RandomBytes); - env->SetMethod(target, "randomFill", RandomBytesBuffer); env->SetMethod(target, "timingSafeEqual", TimingSafeEqual); env->SetMethod(target, "getSSLCiphers", GetSSLCiphers); env->SetMethod(target, "getCiphers", GetCiphers); @@ -5380,13 +5220,6 @@ void Initialize(Local target, #ifndef OPENSSL_NO_SCRYPT env->SetMethod(target, "scrypt", Scrypt); #endif // OPENSSL_NO_SCRYPT - - Local rb = FunctionTemplate::New(env->isolate()); - rb->SetClassName(FIXED_ONE_BYTE_STRING(env->isolate(), "RandomBytes")); - AsyncWrap::AddWrapMethods(env, rb); - Local rbt = rb->InstanceTemplate(); - rbt->SetInternalFieldCount(1); - env->set_randombytes_constructor_template(rbt); } } // namespace crypto diff --git a/test/sequential/test-async-wrap-getasyncid.js b/test/sequential/test-async-wrap-getasyncid.js index fb887ed5acd2c6..002ffcffd820c1 100644 --- a/test/sequential/test-async-wrap-getasyncid.js +++ b/test/sequential/test-async-wrap-getasyncid.js @@ -120,7 +120,7 @@ if (common.hasCrypto) { // eslint-disable-line node-core/crypto-check crypto.pbkdf2('password', 'salt', 1, 20, 'sha256', mc); crypto.randomBytes(1, common.mustCall(function rb() { - testInitialized(this, 'RandomBytes'); + testInitialized(this, 'AsyncWrap'); })); if (typeof process.binding('crypto').scrypt === 'function') {