Git-Mirrors/keepassxc
1
0
Fork 0
mirror of https://github.com/keepassxreboot/keepassxc.git synced 2025-01-01 02:36:12 -05:00
Code Issues Packages Projects Releases Wiki Activity
e180980b90
keepassxc/src/core/Alloc.cpp

97 lines
2.5 KiB
C++
Raw Normal View History

Improve resilience against memory attacks To reduce residual fragments of secret data in memory after deallocation, this patch replaces the global delete operator with a version that zeros out previously allocated memory. It makes use of the new C++14 sized deallocation, but provides an unsized fallback with platform-specific size deductions. This change is only a minor mitigation and cannot protect against buffer reallocations by the operating system or non-C++ libraries. Thus, we still cannot guarantee all memory to be wiped after free. As a further improvement, this patch uses libgcrypt and libsodium to write long-lived master key component hashes into a secure memory area and wipe it afterwards. The patch also fixes compiler flags not being set properly on macOS.
2019-02-21 16:28:45 -05:00
/*
* Copyright (C) 2019 KeePassXC Team <team@keepassxc.org>
*
* This program is free software: you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation, either version 2 or (at your option)
* version 3 of the License.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with this program. If not, see <http://www.gnu.org/licenses/>.
*/
Fix missing include in alloc preventing some secure deallocations
2022-03-04 06:44:36 -05:00
#include <QtGlobal>
Replace all crypto libraries with Botan Selected the [Botan crypto library](https://github.com/randombit/botan) due to its feature list, maintainer support, availability across all deployment platforms, and ease of use. Also evaluated Crypto++ as a viable candidate, but the additional features of Botan (PKCS#11, TPM, etc) won out. The random number generator received a backend upgrade. Botan prefers hardware-based RNG's and will provide one if available. This is transparent to KeePassXC and a significant improvement over gcrypt. Replaced Argon2 library with built-in Botan implementation that supports i, d, and id. This requires Botan 2.11.0 or higher. Also simplified the parameter test across KDF's. Aligned SymmetricCipher parameters with available modes. All encrypt and decrypt operations are done in-place instead of returning new objects. This allows use of secure vectors in the future with no additional overhead. Took this opportunity to decouple KeeShare from SSH Agent. Removed leftover code from OpenSSHKey and consolidated the SSH Agent code into the same directory. Removed bcrypt and blowfish inserts since they are provided by Botan. Additionally simplified KeeShare settings interface by removing raw certificate byte data from the user interface. KeeShare will be further refactored in a future PR. NOTE: This PR breaks backwards compatibility with KeeShare certificates due to different RSA key storage with Botan. As a result, new "own" certificates will need to be generated and trust re-established. Removed YKChallengeResponseKeyCLI in favor of just using the original implementation with signal/slots. Removed TestRandom stub since it was just faking random numbers and not actually using the backend. TestRandomGenerator now uses the actual RNG. Greatly simplified Secret Service plugin's use of crypto functions with Botan.
2021-04-04 08:56:00 -04:00
#include <botan/mem_ops.h>
Fix compilation on macOS when clang < 9 or Qt < 5.12 (#7117) * fix compilation on Qt not having QOperatingSystemVersion::MacOSBigSur The code uses 'QOperatingSystemVersion::MacOSBigSur' which doesn't exist in all Qt versions (it has been backported to Qt 5.12.10+ & 5.15.1+ only). On older macos systems like El Capitan the last supported version of Qt is 5.11 This will fix compilation issue on such older systems and on systems running with Qt not supporting QOperatingSystemVersion::MacOSBigSur Compilation error was: error: no member named 'MacOSBigSur' in 'QOperatingSystemVersion' * Fix compilation when osx <= 10.9 * AppKitImpl.mm: button property is new in 10.10. It is used for a feature of KeePassXC that is only available from 10.17 onwards. So we don't need it when compiling on <= 10.9 error: property 'button' not found on object of type 'NSStatusItem *' NSString* appearance = [dummy.button.effectiveAppearance.name lowercaseString]; ^ * The code uses @available syntax which is supported by AppleClang >= 9 or LLVM >= 5. We check __clang_major__ to allow compilation on older versions of macOS that don't have a recent clang. For example on El Capitan. * Fix compilation when osx <= 10.8 * AppKitImpl.mm: AXIsProcessTrustedWithOptions exists from 10.9 onwards error: use of undeclared identifier 'kAXTrustedCheckOptionPrompt' error: use of undeclared identifier 'AXIsProcessTrustedWithOptions' * Fix compilation when osx <= 10.7 * MacUtils.cpp: CoreGraphics exists from 10.8 onwards only, capslock detection feature would have to be implemented on OSX <= 10.7 * AppKitImpl.mm: CGDisplayStreamRef exists from 10.8 onwards only. It is used for a feature of KeePassXC that is only available from 10.15 onwards. So we don't need it when compiling on <= 10.7 error: unknown type name 'CGDisplayStreamRef' * AppKitImpl.mm: Syntax is not understood by 10.7, update it to be understandable by <= 10.7 error: expected method to read dictionary element not found on object of type 'NSDictionary *' NSRunningApplication* app = userInfo[NSWorkspaceApplicationKey]; ^ * The code uses @available syntax which is supported by AppleClang >= 9 or LLVM >= 5. We check __clang_major__ to allow compilation on older versions of macOS that don't have a recent clang. * Fix compilation error on OS X 10.11 src/core/Alloc.cpp:44:10: error: no type named 'free' in namespace 'std' std::free(ptr); ~~~~~^ This is a regression, since it was fixed in [1] Per [2], std::free() needs #include <cstdlib>. That file is included indirectly on newer systems. [1] https://github.com/keepassxreboot/keepassxc/commit/7c6c027d33b06eb706f93e3d178a2305d7bcfd56 [2] https://en.cppreference.com/w/cpp/memory/c/free * fix compilation when macos SDK <= 10.14 These methods are only available from macOS 10.15 - kSecAccessControlWatch - LAPolicy.deviceOwnerAuthenticationWithBiometricsOrWatch The code uses @available syntax which is supported by AppleClang >= 9 or LLVM >= 5. We check __clang_major__ to allow compilation on older versions of macOS that don't have a recent clang.
2021-11-24 22:35:38 -05:00
#include <cstdlib>
Unbreak build on FreeBSD (#3304) * Unbreak build on FreeBSD ``` In file included from src/core/Alloc.cpp:24: /usr/include/malloc.h:3:2: error: "<malloc.h> has been replaced by <stdlib.h>" ^ src/core/Alloc.cpp:65:28: error: use of undeclared identifier 'malloc_usable_size' ::operator delete(ptr, malloc_usable_size(ptr)); ^ 2 errors generated. ``` Non-standard APIs like `malloc_usable_size()` [1] are defined in `malloc_np.h` on FreeBSD, so use it instead of `malloc.h` there. [1] https://man.freebsd.org/jemalloc(3) * Allow Browser HostInstaller to work on FreeBSD and other OS's * Drop custom GNUInstallDirs cmake module and use cmake's own module It seems to be an outdated version and cmake generally provides it itself, so there should be no need for keepassxc to provide its own custom version. On FreeBSD this fixes the issue that man pages were installed into the wrong directory, i.e., `/usr/local/share/man` vs `/usr/local/man` as per FreeBSD's current packaging policy. Signed-off-by: Tobias Kortkamp <tobik@FreeBSD.org>
2019-06-22 08:18:47 -04:00
#if defined(Q_OS_MACOS)
Improve resilience against memory attacks To reduce residual fragments of secret data in memory after deallocation, this patch replaces the global delete operator with a version that zeros out previously allocated memory. It makes use of the new C++14 sized deallocation, but provides an unsized fallback with platform-specific size deductions. This change is only a minor mitigation and cannot protect against buffer reallocations by the operating system or non-C++ libraries. Thus, we still cannot guarantee all memory to be wiped after free. As a further improvement, this patch uses libgcrypt and libsodium to write long-lived master key component hashes into a secure memory area and wipe it afterwards. The patch also fixes compiler flags not being set properly on macOS.
2019-02-21 16:28:45 -05:00
#include <malloc/malloc.h>
Unbreak build on FreeBSD (#3304) * Unbreak build on FreeBSD ``` In file included from src/core/Alloc.cpp:24: /usr/include/malloc.h:3:2: error: "<malloc.h> has been replaced by <stdlib.h>" ^ src/core/Alloc.cpp:65:28: error: use of undeclared identifier 'malloc_usable_size' ::operator delete(ptr, malloc_usable_size(ptr)); ^ 2 errors generated. ``` Non-standard APIs like `malloc_usable_size()` [1] are defined in `malloc_np.h` on FreeBSD, so use it instead of `malloc.h` there. [1] https://man.freebsd.org/jemalloc(3) * Allow Browser HostInstaller to work on FreeBSD and other OS's * Drop custom GNUInstallDirs cmake module and use cmake's own module It seems to be an outdated version and cmake generally provides it itself, so there should be no need for keepassxc to provide its own custom version. On FreeBSD this fixes the issue that man pages were installed into the wrong directory, i.e., `/usr/local/share/man` vs `/usr/local/man` as per FreeBSD's current packaging policy. Signed-off-by: Tobias Kortkamp <tobik@FreeBSD.org>
2019-06-22 08:18:47 -04:00
#elif defined(Q_OS_FREEBSD)
#include <malloc_np.h>
Check include malloc.h and malloc_usable_size(3) One some operating systems malloc(3) is not in malloc.h nor in malloc_np.h, instead it is in stdlib.h. In addition, not all systems support malloc_usable_size(3). You could argue it's not safe. This patch tries to be portable and it fix the build on OpenBSD.
2019-10-26 16:50:49 -04:00
#elif defined(HAVE_MALLOC_H)
Improve resilience against memory attacks To reduce residual fragments of secret data in memory after deallocation, this patch replaces the global delete operator with a version that zeros out previously allocated memory. It makes use of the new C++14 sized deallocation, but provides an unsized fallback with platform-specific size deductions. This change is only a minor mitigation and cannot protect against buffer reallocations by the operating system or non-C++ libraries. Thus, we still cannot guarantee all memory to be wiped after free. As a further improvement, this patch uses libgcrypt and libsodium to write long-lived master key component hashes into a secure memory area and wipe it afterwards. The patch also fixes compiler flags not being set properly on macOS.
2019-02-21 16:28:45 -05:00
#include <malloc.h>
Check include malloc.h and malloc_usable_size(3) One some operating systems malloc(3) is not in malloc.h nor in malloc_np.h, instead it is in stdlib.h. In addition, not all systems support malloc_usable_size(3). You could argue it's not safe. This patch tries to be portable and it fix the build on OpenBSD.
2019-10-26 16:50:49 -04:00
#else
clang-tidy: C++ headers Signed-off-by: Rosen Penev <rosenp@gmail.com>
2022-04-11 22:14:42 -04:00
#include <cstdlib>
Improve resilience against memory attacks To reduce residual fragments of secret data in memory after deallocation, this patch replaces the global delete operator with a version that zeros out previously allocated memory. It makes use of the new C++14 sized deallocation, but provides an unsized fallback with platform-specific size deductions. This change is only a minor mitigation and cannot protect against buffer reallocations by the operating system or non-C++ libraries. Thus, we still cannot guarantee all memory to be wiped after free. As a further improvement, this patch uses libgcrypt and libsodium to write long-lived master key component hashes into a secure memory area and wipe it afterwards. The patch also fixes compiler flags not being set properly on macOS.
2019-02-21 16:28:45 -05:00
#endif
#if defined(NDEBUG) && !defined(__cpp_sized_deallocation)
#warning "KeePassXC is being compiled without sized deallocation support. Deletes may be slow."
#endif
/**
* Custom sized delete operator which securely zeroes out allocated
* memory before freeing it (requires C++14 sized deallocation support).
*/
void operator delete(void* ptr, std::size_t size) noexcept
{
if (!ptr) {
return;
}
Replace all crypto libraries with Botan Selected the [Botan crypto library](https://github.com/randombit/botan) due to its feature list, maintainer support, availability across all deployment platforms, and ease of use. Also evaluated Crypto++ as a viable candidate, but the additional features of Botan (PKCS#11, TPM, etc) won out. The random number generator received a backend upgrade. Botan prefers hardware-based RNG's and will provide one if available. This is transparent to KeePassXC and a significant improvement over gcrypt. Replaced Argon2 library with built-in Botan implementation that supports i, d, and id. This requires Botan 2.11.0 or higher. Also simplified the parameter test across KDF's. Aligned SymmetricCipher parameters with available modes. All encrypt and decrypt operations are done in-place instead of returning new objects. This allows use of secure vectors in the future with no additional overhead. Took this opportunity to decouple KeeShare from SSH Agent. Removed leftover code from OpenSSHKey and consolidated the SSH Agent code into the same directory. Removed bcrypt and blowfish inserts since they are provided by Botan. Additionally simplified KeeShare settings interface by removing raw certificate byte data from the user interface. KeeShare will be further refactored in a future PR. NOTE: This PR breaks backwards compatibility with KeeShare certificates due to different RSA key storage with Botan. As a result, new "own" certificates will need to be generated and trust re-established. Removed YKChallengeResponseKeyCLI in favor of just using the original implementation with signal/slots. Removed TestRandom stub since it was just faking random numbers and not actually using the backend. TestRandomGenerator now uses the actual RNG. Greatly simplified Secret Service plugin's use of crypto functions with Botan.
2021-04-04 08:56:00 -04:00
Botan::secure_scrub_memory(ptr, size);
Improve resilience against memory attacks To reduce residual fragments of secret data in memory after deallocation, this patch replaces the global delete operator with a version that zeros out previously allocated memory. It makes use of the new C++14 sized deallocation, but provides an unsized fallback with platform-specific size deductions. This change is only a minor mitigation and cannot protect against buffer reallocations by the operating system or non-C++ libraries. Thus, we still cannot guarantee all memory to be wiped after free. As a further improvement, this patch uses libgcrypt and libsodium to write long-lived master key component hashes into a secure memory area and wipe it afterwards. The patch also fixes compiler flags not being set properly on macOS.
2019-02-21 16:28:45 -05:00
std::free(ptr);
}
void operator delete[](void* ptr, std::size_t size) noexcept
{
::operator delete(ptr, size);
}
/**
* Custom delete operator which securely zeroes out
* allocated memory before freeing it.
*/
void operator delete(void* ptr) noexcept
{
if (!ptr) {
return;
}
#if defined(Q_OS_WIN)
::operator delete(ptr, _msize(ptr));
#elif defined(Q_OS_MACOS)
::operator delete(ptr, malloc_size(ptr));
Check include malloc.h and malloc_usable_size(3) One some operating systems malloc(3) is not in malloc.h nor in malloc_np.h, instead it is in stdlib.h. In addition, not all systems support malloc_usable_size(3). You could argue it's not safe. This patch tries to be portable and it fix the build on OpenBSD.
2019-10-26 16:50:49 -04:00
#elif defined(HAVE_MALLOC_USABLE_SIZE)
Improve resilience against memory attacks To reduce residual fragments of secret data in memory after deallocation, this patch replaces the global delete operator with a version that zeros out previously allocated memory. It makes use of the new C++14 sized deallocation, but provides an unsized fallback with platform-specific size deductions. This change is only a minor mitigation and cannot protect against buffer reallocations by the operating system or non-C++ libraries. Thus, we still cannot guarantee all memory to be wiped after free. As a further improvement, this patch uses libgcrypt and libsodium to write long-lived master key component hashes into a secure memory area and wipe it afterwards. The patch also fixes compiler flags not being set properly on macOS.
2019-02-21 16:28:45 -05:00
::operator delete(ptr, malloc_usable_size(ptr));
#else
// whatever OS this is, give up and simply free stuff
std::free(ptr);
#endif
}
void operator delete[](void* ptr) noexcept
{
::operator delete(ptr);
}
Significantly enhance hardware key robustness * Significantly improve user experience when using hardware keys on databases in both GUI and CLI modes. Prevent locking up the YubiKey USB interface for prolonged periods of time. Allows for other apps to use the key concurrently with KeePassXC. * Improve messages displayed to user when finding keys and when user interaction is required. Output specific error messages when handling hardware keys during database read/write. * Only poll for keys when previously used or upon user request. Prevent continuously polling keys when accessing the UI such as switching tabs and minimize/maximize. * Add support for using multiple hardware keys simultaneously. Keys are identified by their serial number which prevents using the wrong key during open and save operations. * Fixes #4400 * Fixes #4065 * Fixes #1050 * Fixes #1215 * Fixes #3087 * Fixes #1088 * Fixes #1869
2020-04-06 08:42:20 -04:00
// clang-format versions less than 10.0 refuse to put a space before "noexcept"
// clang-format off
Improve resilience against memory attacks To reduce residual fragments of secret data in memory after deallocation, this patch replaces the global delete operator with a version that zeros out previously allocated memory. It makes use of the new C++14 sized deallocation, but provides an unsized fallback with platform-specific size deductions. This change is only a minor mitigation and cannot protect against buffer reallocations by the operating system or non-C++ libraries. Thus, we still cannot guarantee all memory to be wiped after free. As a further improvement, this patch uses libgcrypt and libsodium to write long-lived master key component hashes into a secure memory area and wipe it afterwards. The patch also fixes compiler flags not being set properly on macOS.
2019-02-21 16:28:45 -05:00
/**
* Custom insecure delete operator that does not zero out memory before
* freeing a buffer. Can be used for better performance.
*/
Fix DatabaseOpenDialog layout
2020-04-11 13:02:57 -04:00
void operator delete(void* ptr, bool) noexcept
Improve resilience against memory attacks To reduce residual fragments of secret data in memory after deallocation, this patch replaces the global delete operator with a version that zeros out previously allocated memory. It makes use of the new C++14 sized deallocation, but provides an unsized fallback with platform-specific size deductions. This change is only a minor mitigation and cannot protect against buffer reallocations by the operating system or non-C++ libraries. Thus, we still cannot guarantee all memory to be wiped after free. As a further improvement, this patch uses libgcrypt and libsodium to write long-lived master key component hashes into a secure memory area and wipe it afterwards. The patch also fixes compiler flags not being set properly on macOS.
2019-02-21 16:28:45 -05:00
{
std::free(ptr);
}
Significantly enhance hardware key robustness * Significantly improve user experience when using hardware keys on databases in both GUI and CLI modes. Prevent locking up the YubiKey USB interface for prolonged periods of time. Allows for other apps to use the key concurrently with KeePassXC. * Improve messages displayed to user when finding keys and when user interaction is required. Output specific error messages when handling hardware keys during database read/write. * Only poll for keys when previously used or upon user request. Prevent continuously polling keys when accessing the UI such as switching tabs and minimize/maximize. * Add support for using multiple hardware keys simultaneously. Keys are identified by their serial number which prevents using the wrong key during open and save operations. * Fixes #4400 * Fixes #4065 * Fixes #1050 * Fixes #1215 * Fixes #3087 * Fixes #1088 * Fixes #1869
2020-04-06 08:42:20 -04:00
// clang-format on
Improve resilience against memory attacks To reduce residual fragments of secret data in memory after deallocation, this patch replaces the global delete operator with a version that zeros out previously allocated memory. It makes use of the new C++14 sized deallocation, but provides an unsized fallback with platform-specific size deductions. This change is only a minor mitigation and cannot protect against buffer reallocations by the operating system or non-C++ libraries. Thus, we still cannot guarantee all memory to be wiped after free. As a further improvement, this patch uses libgcrypt and libsodium to write long-lived master key component hashes into a secure memory area and wipe it afterwards. The patch also fixes compiler flags not being set properly on macOS.
2019-02-21 16:28:45 -05:00
void operator delete[](void* ptr, bool) noexcept
{
::operator delete(ptr, false);
}
Reference in New Issue Copy Permalink