moved TorControl files into libretroshare. Not compiling yet.

2025-07-25 15:35:49 -04:00 · 2021-06-19 15:34:46 +02:00 · 2021-06-19 15:34:46 +02:00 · d7fb3d8bf4
commit d7fb3d8bf4
parent 20c0032ca8
42 changed files with 294 additions and 175 deletions
--- a/libretroshare/src/tor/SecureRNG.cpp
+++ b/libretroshare/src/tor/SecureRNG.cpp
@ -0,0 +1,154 @@
+/* Ricochet - https://ricochet.im/
+ * Copyright (C) 2014, John Brooks <john.brooks@dereferenced.net>
+ *
+ * Redistribution and use in source and binary forms, with or without
+ * modification, are permitted provided that the following conditions are
+ * met:
+ *
+ *    * Redistributions of source code must retain the above copyright
+ *      notice, this list of conditions and the following disclaimer.
+ *
+ *    * Redistributions in binary form must reproduce the above
+ *      copyright notice, this list of conditions and the following disclaimer
+ *      in the documentation and/or other materials provided with the
+ *      distribution.
+ *
+ *    * Neither the names of the copyright owners nor the names of its
+ *      contributors may be used to endorse or promote products derived from
+ *      this software without specific prior written permission.
+ *
+ * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
+ * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
+ * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
+ * A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
+ * OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+ * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
+ * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+ * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+ * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+ * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
+ * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+ */
+
+#include "SecureRNG.h"
+
+#include <openssl/rand.h>
+#include <openssl/err.h>
+#include <limits.h>
+#include <iostream>
+#include <sstream>
+
+#ifdef Q_OS_WIN
+#include <wtypes.h>
+#include <wincrypt.h>
+#endif
+
+#if QT_VERSION >= 0x040700
+#include <QElapsedTimer>
+#endif
+
+bool SecureRNG::seed()
+{
+#if QT_VERSION >= 0x040700
+    QElapsedTimer timer;
+    timer.start();
+#endif
+
+#ifdef Q_OS_WIN
+    /* RAND_poll is very unreliable on windows; with older versions of OpenSSL,
+     * it can take up to several minutes to run and has been known to crash.
+     * Even newer versions seem to take around 400ms, which is far too long for
+     * interactive startup. Random data from the windows CSP is used as a seed
+     * instead, as it should be very high quality random and fast. */
+    HCRYPTPROV provider = 0;
+    if (!CryptAcquireContext(&provider, NULL, NULL, PROV_RSA_FULL, CRYPT_VERIFYCONTEXT))
+    {
+        qWarning() << "Failed to acquire CSP context for RNG seed:" << hex << GetLastError();
+        return false;
+    }
+
+    /* Same amount of entropy OpenSSL uses, apparently. */
+    char buf[32];
+
+    if (!CryptGenRandom(provider, sizeof(buf), reinterpret_cast<BYTE*>(buf)))
+    {
+        qWarning() << "Failed to get entropy from CSP for RNG seed: " << hex << GetLastError();
+        CryptReleaseContext(provider, 0);
+        return false;
+    }
+
+    CryptReleaseContext(provider, 0);
+
+    RAND_seed(buf, sizeof(buf));
+    memset(buf, 0, sizeof(buf));
+#else
+    if (!RAND_poll())
+    {
+        std::cerr << "OpenSSL RNG seed failed:" << ERR_get_error();
+        return false;
+    }
+#endif
+
+#if QT_VERSION >= 0x040700
+    qDebug() << "RNG seed took" << timer.elapsed() << "ms";
+#endif
+
+    return true;
+}
+
+void SecureRNG::random(unsigned char *buf, int size)
+{
+    int r = RAND_bytes(buf, size);
+
+    if (r <= 0)
+    {
+        std::ostringstream s;
+        s << "RNG failed: " << ERR_get_error() ;
+        throw std::runtime_error(s.str());
+    }
+}
+
+QByteArray SecureRNG::random(int size)
+{
+    QByteArray re(size, 0);
+    random(re.data(), size);
+    return re;
+}
+
+QByteArray SecureRNG::randomPrintable(int length)
+{
+    QByteArray re(length, 0);
+    for (uint32_t i = 0; i < re.size(); i++)
+        re[i] = randomInt(95) + 32;
+    return re;
+}
+
+unsigned SecureRNG::randomInt(unsigned max)
+{
+    unsigned cutoff = UINT_MAX - (UINT_MAX % max);
+    unsigned value = 0;
+
+    for (;;)
+    {
+        random(reinterpret_cast<unsigned char*>(&value), sizeof(value));
+        if (value < cutoff)
+            return value % max;
+    }
+}
+
+#ifndef UINT64_MAX
+#define UINT64_MAX ((uint64_t)-1)
+#endif
+
+uint64_t SecureRNG::randomInt64(uint64_t max)
+{
+    uint64_t cutoff = UINT64_MAX - (UINT64_MAX % max);
+    uint64_t value = 0;
+
+    for (;;)
+    {
+        random(reinterpret_cast<unsigned char*>(value), sizeof(value));
+        if (value < cutoff)
+            return value % max;
+    }
+}