mirror of
https://git.wownero.com/wownero/wownero.git
synced 2024-12-23 04:08:54 +00:00
crypto: make secret_key automatically mlock
This commit is contained in:
parent
70271fa788
commit
ab74dc277a
@ -40,6 +40,7 @@
|
|||||||
#include <memory.h>
|
#include <memory.h>
|
||||||
|
|
||||||
#include "memwipe.h"
|
#include "memwipe.h"
|
||||||
|
#include "mlocker.h"
|
||||||
#include "hash.h"
|
#include "hash.h"
|
||||||
|
|
||||||
namespace crypto {
|
namespace crypto {
|
||||||
@ -50,7 +51,7 @@ namespace crypto {
|
|||||||
#if defined(__cplusplus)
|
#if defined(__cplusplus)
|
||||||
}
|
}
|
||||||
|
|
||||||
using chacha_key = tools::scrubbed_arr<uint8_t, CHACHA_KEY_SIZE>;
|
using chacha_key = epee::mlocked<tools::scrubbed_arr<uint8_t, CHACHA_KEY_SIZE>>;
|
||||||
|
|
||||||
#pragma pack(push, 1)
|
#pragma pack(push, 1)
|
||||||
// MS VC 2012 doesn't interpret `class chacha_iv` as POD in spite of [9.0.10], so it is a struct
|
// MS VC 2012 doesn't interpret `class chacha_iv` as POD in spite of [9.0.10], so it is a struct
|
||||||
@ -71,20 +72,20 @@ namespace crypto {
|
|||||||
|
|
||||||
inline void generate_chacha_key(const void *data, size_t size, chacha_key& key, uint64_t kdf_rounds) {
|
inline void generate_chacha_key(const void *data, size_t size, chacha_key& key, uint64_t kdf_rounds) {
|
||||||
static_assert(sizeof(chacha_key) <= sizeof(hash), "Size of hash must be at least that of chacha_key");
|
static_assert(sizeof(chacha_key) <= sizeof(hash), "Size of hash must be at least that of chacha_key");
|
||||||
tools::scrubbed_arr<char, HASH_SIZE> pwd_hash;
|
epee::mlocked<tools::scrubbed_arr<char, HASH_SIZE>> pwd_hash;
|
||||||
crypto::cn_slow_hash(data, size, pwd_hash.data(), 0/*variant*/, 0/*prehashed*/);
|
crypto::cn_slow_hash(data, size, pwd_hash.data(), 0/*variant*/, 0/*prehashed*/);
|
||||||
for (uint64_t n = 1; n < kdf_rounds; ++n)
|
for (uint64_t n = 1; n < kdf_rounds; ++n)
|
||||||
crypto::cn_slow_hash(pwd_hash.data(), pwd_hash.size(), pwd_hash.data(), 0/*variant*/, 0/*prehashed*/);
|
crypto::cn_slow_hash(pwd_hash.data(), pwd_hash.size(), pwd_hash.data(), 0/*variant*/, 0/*prehashed*/);
|
||||||
memcpy(&unwrap(key), pwd_hash.data(), sizeof(key));
|
memcpy(&unwrap(unwrap(key)), pwd_hash.data(), sizeof(key));
|
||||||
}
|
}
|
||||||
|
|
||||||
inline void generate_chacha_key_prehashed(const void *data, size_t size, chacha_key& key, uint64_t kdf_rounds) {
|
inline void generate_chacha_key_prehashed(const void *data, size_t size, chacha_key& key, uint64_t kdf_rounds) {
|
||||||
static_assert(sizeof(chacha_key) <= sizeof(hash), "Size of hash must be at least that of chacha_key");
|
static_assert(sizeof(chacha_key) <= sizeof(hash), "Size of hash must be at least that of chacha_key");
|
||||||
tools::scrubbed_arr<char, HASH_SIZE> pwd_hash;
|
epee::mlocked<tools::scrubbed_arr<char, HASH_SIZE>> pwd_hash;
|
||||||
crypto::cn_slow_hash(data, size, pwd_hash.data(), 0/*variant*/, 1/*prehashed*/);
|
crypto::cn_slow_hash(data, size, pwd_hash.data(), 0/*variant*/, 1/*prehashed*/);
|
||||||
for (uint64_t n = 1; n < kdf_rounds; ++n)
|
for (uint64_t n = 1; n < kdf_rounds; ++n)
|
||||||
crypto::cn_slow_hash(pwd_hash.data(), pwd_hash.size(), pwd_hash.data(), 0/*variant*/, 0/*prehashed*/);
|
crypto::cn_slow_hash(pwd_hash.data(), pwd_hash.size(), pwd_hash.data(), 0/*variant*/, 0/*prehashed*/);
|
||||||
memcpy(&unwrap(key), pwd_hash.data(), sizeof(key));
|
memcpy(&unwrap(unwrap(key)), pwd_hash.data(), sizeof(key));
|
||||||
}
|
}
|
||||||
|
|
||||||
inline void generate_chacha_key(std::string password, chacha_key& key, uint64_t kdf_rounds) {
|
inline void generate_chacha_key(std::string password, chacha_key& key, uint64_t kdf_rounds) {
|
||||||
|
@ -41,6 +41,7 @@
|
|||||||
#include "common/pod-class.h"
|
#include "common/pod-class.h"
|
||||||
#include "common/util.h"
|
#include "common/util.h"
|
||||||
#include "memwipe.h"
|
#include "memwipe.h"
|
||||||
|
#include "mlocker.h"
|
||||||
#include "generic-ops.h"
|
#include "generic-ops.h"
|
||||||
#include "hex.h"
|
#include "hex.h"
|
||||||
#include "span.h"
|
#include "span.h"
|
||||||
@ -65,7 +66,7 @@ namespace crypto {
|
|||||||
friend class crypto_ops;
|
friend class crypto_ops;
|
||||||
};
|
};
|
||||||
|
|
||||||
using secret_key = tools::scrubbed<ec_scalar>;
|
using secret_key = epee::mlocked<tools::scrubbed<ec_scalar>>;
|
||||||
|
|
||||||
POD_CLASS public_keyV {
|
POD_CLASS public_keyV {
|
||||||
std::vector<public_key> keys;
|
std::vector<public_key> keys;
|
||||||
|
@ -67,7 +67,7 @@ DISABLE_VS_WARNINGS(4244 4345)
|
|||||||
static void derive_key(const crypto::chacha_key &base_key, crypto::chacha_key &key)
|
static void derive_key(const crypto::chacha_key &base_key, crypto::chacha_key &key)
|
||||||
{
|
{
|
||||||
static_assert(sizeof(base_key) == sizeof(crypto::hash), "chacha key and hash should be the same size");
|
static_assert(sizeof(base_key) == sizeof(crypto::hash), "chacha key and hash should be the same size");
|
||||||
tools::scrubbed_arr<char, sizeof(base_key)+1> data;
|
epee::mlocked<tools::scrubbed_arr<char, sizeof(base_key)+1>> data;
|
||||||
memcpy(data.data(), &base_key, sizeof(base_key));
|
memcpy(data.data(), &base_key, sizeof(base_key));
|
||||||
data[sizeof(base_key)] = KEYS_ENCRYPTION_SALT;
|
data[sizeof(base_key)] = KEYS_ENCRYPTION_SALT;
|
||||||
crypto::generate_chacha_key(data.data(), sizeof(data), key, 1);
|
crypto::generate_chacha_key(data.data(), sizeof(data), key, 1);
|
||||||
@ -223,7 +223,7 @@ DISABLE_VS_WARNINGS(4244 4345)
|
|||||||
void account_base::create_from_viewkey(const cryptonote::account_public_address& address, const crypto::secret_key& viewkey)
|
void account_base::create_from_viewkey(const cryptonote::account_public_address& address, const crypto::secret_key& viewkey)
|
||||||
{
|
{
|
||||||
crypto::secret_key fake;
|
crypto::secret_key fake;
|
||||||
memset(&unwrap(fake), 0, sizeof(fake));
|
memset(&unwrap(unwrap(fake)), 0, sizeof(fake));
|
||||||
create_from_keys(address, fake, viewkey);
|
create_from_keys(address, fake, viewkey);
|
||||||
}
|
}
|
||||||
//-----------------------------------------------------------------
|
//-----------------------------------------------------------------
|
||||||
|
@ -103,7 +103,7 @@ namespace hw {
|
|||||||
bool device_default::generate_chacha_key(const cryptonote::account_keys &keys, crypto::chacha_key &key, uint64_t kdf_rounds) {
|
bool device_default::generate_chacha_key(const cryptonote::account_keys &keys, crypto::chacha_key &key, uint64_t kdf_rounds) {
|
||||||
const crypto::secret_key &view_key = keys.m_view_secret_key;
|
const crypto::secret_key &view_key = keys.m_view_secret_key;
|
||||||
const crypto::secret_key &spend_key = keys.m_spend_secret_key;
|
const crypto::secret_key &spend_key = keys.m_spend_secret_key;
|
||||||
tools::scrubbed_arr<char, sizeof(view_key) + sizeof(spend_key) + 1> data;
|
epee::mlocked<tools::scrubbed_arr<char, sizeof(view_key) + sizeof(spend_key) + 1>> data;
|
||||||
memcpy(data.data(), &view_key, sizeof(view_key));
|
memcpy(data.data(), &view_key, sizeof(view_key));
|
||||||
memcpy(data.data() + sizeof(view_key), &spend_key, sizeof(spend_key));
|
memcpy(data.data() + sizeof(view_key), &spend_key, sizeof(spend_key));
|
||||||
data[sizeof(data) - 1] = CHACHA8_KEY_TAIL;
|
data[sizeof(data) - 1] = CHACHA8_KEY_TAIL;
|
||||||
|
@ -2963,7 +2963,7 @@ void wallet2::setup_keys(const epee::wipeable_string &password)
|
|||||||
}
|
}
|
||||||
|
|
||||||
static_assert(HASH_SIZE == sizeof(crypto::chacha_key), "Mismatched sizes of hash and chacha key");
|
static_assert(HASH_SIZE == sizeof(crypto::chacha_key), "Mismatched sizes of hash and chacha key");
|
||||||
tools::scrubbed_arr<char, HASH_SIZE+1> cache_key_data;
|
epee::mlocked<tools::scrubbed_arr<char, HASH_SIZE+1>> cache_key_data;
|
||||||
memcpy(cache_key_data.data(), &key, HASH_SIZE);
|
memcpy(cache_key_data.data(), &key, HASH_SIZE);
|
||||||
cache_key_data[HASH_SIZE] = CACHE_KEY_TAIL;
|
cache_key_data[HASH_SIZE] = CACHE_KEY_TAIL;
|
||||||
cn_fast_hash(cache_key_data.data(), HASH_SIZE+1, (crypto::hash&)m_cache_key);
|
cn_fast_hash(cache_key_data.data(), HASH_SIZE+1, (crypto::hash&)m_cache_key);
|
||||||
|
Loading…
Reference in New Issue
Block a user