-- Leo's gemini proxy
-- Connecting to git.thebackupbox.net:1965...
-- Connected
-- Sending request
-- Meta line: 20 text/gemini
repo: urcd action: commit revision: path_from: revision_from: 60c64b69103e02554e847a290308eda876aa25c5: path_to: revision_to:
commit 60c64b69103e02554e847a290308eda876aa25c5
Author: root <root@localhost.(none)>
Date: Mon Nov 17 09:28:04 2014 +0000
[liburc] urc_jail and randombytes
diff --git a/Make.sh b/Make.sh
--- a/Make.sh +++ b/Make.sh @@ -103,3 +103,6 @@ gcc `cat conf-cc` -O2 -shared -pthread -fPIC -fwrapv -Wall \ -fno-strict-aliasing -I $PYTHON_HEADERS build/taia96n.c -o taia96n.so || exit 1 rm -rf build libsodium_src || exit 1 + +if ! su urcd ; then useradd urcd +fi diff --git a/src/liburc.c b/src/liburc.c
--- a/src/liburc.c
+++ b/src/liburc.c
@@ -15,6 +15,21 @@
#define URC_MTU 1024
#define IRC_MTU 512
+PyObject *pyurc_jail(PyObject *self, PyObject *args, PyObject *kw) {
+ char *path;
+ Py_ssize_t pathsize = 0;
+ static const char *kwlist[] = {"path",0};
+ if (!PyArg_ParseTupleAndKeywords(
+ args,
+ kw,
+ "|s#:urc_jail",
+ (char **)kwlist,
+ &path,
+ &pathsize
+ )) return Py_BuildValue("i", -1);
+ return Py_BuildValue("i", urc_jail(path));
+}
+
PyObject *pyurchub_fmt(PyObject *self, PyObject *args, PyObject *kw) {
unsigned char p[1024];
char *b;
@@ -59,7 +74,8 @@ PyObject *pyurcsign_fmt(PyObject *self, PyObject *args, PyObject *kw) {
PyObject *pyurcsign_verify(PyObject *self, PyObject *args, PyObject *kw) {
unsigned char *p;
unsigned char *pk;
- Py_ssize_t psize=0, pksize=0;
+ Py_ssize_t psize=0;
+ Py_ssize_t pksize=0;
static const char *kwlist[] = {"p", "pk", 0};
if (!PyArg_ParseTupleAndKeywords(
args,
@@ -249,11 +265,35 @@ PyObject *pyurccryptobox_open(PyObject *self, PyObject *args, PyObject *kw) {
return PyBytes_FromStringAndSize((char *)b, -2-12-4-8+psize-16);
}
+PyObject *pyrandombytes(PyObject *self, PyObject *args, PyObject *kw){
+ PyObject *bytes;
+ unsigned char *b;
+ Py_ssize_t n = 0;
+ static const char *kwlist[] = {"n",0};
+ if (!PyArg_ParseTupleAndKeywords(args, kw,
+ #if PY_VERSION_HEX < 0x02050000
+ "|i:randombytes",
+ #else
+ "|n:randombytes",
+ #endif
+ (char **)kwlist,
+ &n
+ ))
+ return PyBytes_FromStringAndSize("", 0);
+ b = PyMem_Malloc(n);
+ if (!b) return PyBytes_FromStringAndSize("", 0);
+ randombytes(b,n);
+ bytes = PyBytes_FromStringAndSize((char *)b, n);
+ PyMem_Free(b);
+ return bytes;
+}
+
/* ImportError: workaround dummy init function (initliburc) */
PyObject *pyliburc(PyObject *self) { return Py_BuildValue("i", 0); }
static PyMethodDef Module_methods[] = {
{ "liburc", pyliburc, METH_NOARGS },
+ { "urc_jail", pyurc_jail, METH_VARARGS|METH_KEYWORDS},
{ "urchub_fmt", pyurchub_fmt, METH_VARARGS|METH_KEYWORDS},
{ "urcsign_fmt", pyurcsign_fmt, METH_VARARGS|METH_KEYWORDS},
{ "urcsign_verify", pyurcsign_verify, METH_VARARGS|METH_KEYWORDS},
@@ -264,10 +304,12 @@ static PyMethodDef Module_methods[] = {
{ "urcsignsecretbox_verify", pyurcsignsecretbox_verify, METH_VARARGS|METH_KEYWORDS},
{ "urccryptobox_fmt", pyurccryptobox_fmt, METH_VARARGS|METH_KEYWORDS},
{ "urccryptobox_open", pyurccryptobox_open, METH_VARARGS|METH_KEYWORDS},
+ { "randombytes", pyrandombytes, METH_VARARGS|METH_KEYWORDS},
{ NULL, NULL}
};
void initliburc(){ (void) Py_InitModule("liburc", Module_methods); }
+void initurc_jail(){ (void) Py_InitModule("urc_jail", Module_methods); }
void initurchub_fmt(){ (void) Py_InitModule("urchub_fmt", Module_methods); }
void initurcsign_fmt(){ (void) Py_InitModule("urcsign_fmt", Module_methods); }
void initurcsign_verify(){ (void) Py_InitModule("urcsign_verify", Module_methods); }
@@ -277,3 +319,4 @@ void initurccryptobox_fmt(){ (void) Py_InitModule("urccryptobox_fmt", Module_met
void initurccryptobox_open(){ (void) Py_InitModule("urccryptobox_open", Module_methods); }
void initurcsignsecretbox_fmt(){ (void) Py_InitModule("urcsignsecretbox_fmt", Module_methods); }
void initurcsignsecretbox_open(){ (void) Py_InitModule("urcsignsecretbox_open", Module_methods); }
+void initrandombytes(){ (void) Py_InitModule("randombytes", Module_methods); }
diff --git a/src/liburc.h b/src/liburc.h
--- a/src/liburc.h
+++ b/src/liburc.h
@@ -1,11 +1,14 @@
#include <nacl/crypto_secretbox.h>
#include <nacl/crypto_sign.h>
#include <nacl/crypto_box.h>
+#include <sys/types.h>
#include <sys/time.h>
#include <strings.h>
+#include <unistd.h>
#include <stdlib.h>
#include <fcntl.h>
#include <tai.h>
+#include <pwd.h>
/* security: enforce compatibility and santize malicious configurations */
#if crypto_secretbox_BOXZEROBYTES != 16
@@ -21,20 +24,24 @@
#define URC_MTU 1024
#define IRC_MTU 512
-int setlen(unsigned char *b, int blen) {
- if (blen > URC_MTU) return -1;
- b[0] = blen / 256;
- b[1] = blen % 256;
+int devurandomfd = -1;
+
+int urc_jail(char *path) {
+ if (devurandomfd == -1) devurandomfd = open("/dev/urandom",O_RDONLY);
+ struct passwd *urcd = getpwnam("urcd");
+ if ((!urcd)
+ || (chdir(path))
+ || (chroot(path))
+ || (setgroups(0,'\x00'))
+ || (setgid(urcd->pw_gid))
+ || (setuid(urcd->pw_uid)))
+ return -1;
return 0;
}
-/* security: strong entropy not guaranteed */
+/* security: strong entropy not guaranteed without devurandomfd open */
void randombytes(unsigned char *b, int blen) {
- /*
- static int devurandomfd = -1;
- if (devurandomfd == -1) open("/dev/urandom",O_RDONLY);
- if (devurandomfd == -1) {
- */
+ if (devurandomfd == -1) {
int i;
struct timeval now;
for (i=0;i<blen;++i) {
@@ -42,10 +49,14 @@ void randombytes(unsigned char *b, int blen) {
srand(now.tv_usec);
b[i] = rand() & 255;
}
- /*
- }
- else read(devurandomfd,b,blen);
- */
+ } else read(devurandomfd,b,blen);
+}
+
+int setlen(unsigned char *b, int blen) {
+ if (blen > URC_MTU) return -1;
+ b[0] = blen / 256;
+ b[1] = blen % 256;
+ return 0;
}
void taia96n(unsigned char *ts) {
-----END OF PAGE-----
-- Response ended
-- Page fetched on Sun Jun 2 15:10:43 2024