Re: [dpdk-dev] [PATCH] examples/ipsec-secgw: Calling risky function

DPDK patches and discussions
 help / color / mirror / Atom feed

* Re: [dpdk-dev] [PATCH] examples/ipsec-secgw: Calling risky function
  2016-06-07  8:58 [dpdk-dev] [PATCH] examples/ipsec-secgw: Calling risky function Slawomir Mrozowicz
@ 2016-06-07  8:11 ` Thomas Monjalon
  2016-06-07  8:15 ` Sergio Gonzalez Monroy
  1 sibling, 0 replies; 4+ messages in thread
From: Thomas Monjalon @ 2016-06-07  8:11 UTC (permalink / raw)
  To: Slawomir Mrozowicz; +Cc: dev, sergio.gonzalez.monroy

Hi Slawomir,

"Calling risky function"
-> it's obviously a NACK :)
unless you mean "replace non-secure random".

^ permalink raw reply	[flat|nested] 4+ messages in thread

* Re: [dpdk-dev] [PATCH] examples/ipsec-secgw: Calling risky function
  2016-06-07  8:58 [dpdk-dev] [PATCH] examples/ipsec-secgw: Calling risky function Slawomir Mrozowicz
  2016-06-07  8:11 ` Thomas Monjalon
@ 2016-06-07  8:15 ` Sergio Gonzalez Monroy
  2016-06-07 13:16   ` Mrozowicz, SlawomirX
  1 sibling, 1 reply; 4+ messages in thread
From: Sergio Gonzalez Monroy @ 2016-06-07  8:15 UTC (permalink / raw)
  To: Slawomir Mrozowicz; +Cc: dev

On 07/06/2016 09:58, Slawomir Mrozowicz wrote:
> lrand48 should not be used for security related applications,
> as linear congruential algorithms are too easy to break.
> Used a compliant random number generator /dev/urandom.
>
> Fixes: d299106e8e31 ("examples/ipsec-secgw: add IPsec sample application")
> Coverity ID 124558
>
> Signed-off-by: Slawomir Mrozowicz <slawomirx.mrozowicz@intel.com>
> ---

I understand that lrand48 is not crypto secure, but this fix will kill 
performance.

I already have a solution for this issue to be included in the next 
IPSec patch set
that will also add support for GCM/CTR modes.

Sergio

^ permalink raw reply	[flat|nested] 4+ messages in thread

* [dpdk-dev] [PATCH] examples/ipsec-secgw: Calling risky function
@ 2016-06-07  8:58 Slawomir Mrozowicz
  2016-06-07  8:11 ` Thomas Monjalon
  2016-06-07  8:15 ` Sergio Gonzalez Monroy
  0 siblings, 2 replies; 4+ messages in thread
From: Slawomir Mrozowicz @ 2016-06-07  8:58 UTC (permalink / raw)
  To: sergio.gonzalez.monroy; +Cc: dev, Slawomir Mrozowicz

lrand48 should not be used for security related applications,
as linear congruential algorithms are too easy to break.
Used a compliant random number generator /dev/urandom.

Fixes: d299106e8e31 ("examples/ipsec-secgw: add IPsec sample application")
Coverity ID 124558

Signed-off-by: Slawomir Mrozowicz <slawomirx.mrozowicz@intel.com>
---
 examples/ipsec-secgw/esp.c | 17 +++++++++--------
 1 file changed, 9 insertions(+), 8 deletions(-)

diff --git a/examples/ipsec-secgw/esp.c b/examples/ipsec-secgw/esp.c
index 0f6b33e..f3c4687 100644
--- a/examples/ipsec-secgw/esp.c
+++ b/examples/ipsec-secgw/esp.c
@@ -55,16 +55,17 @@
 static inline void
 random_iv_u64(uint64_t *buf, uint16_t n)
 {
-	unsigned left = n & 0x7;
-	unsigned i;
+	int res = 0;
+	FILE *fp;
 
-	RTE_ASSERT((n & 0x3) == 0);
-
-	for (i = 0; i < (n >> 3); i++)
-		buf[i] = rte_rand();
+	fp = fopen("/dev/urandom", "r");
+	if (fp != NULL) {
+		res = fread(buf, 8, n, fp);
+		fclose(fp);
+	}
 
-	if (left)
-		*((uint32_t *)&buf[i]) = (uint32_t)lrand48();
+	RTE_ASSERT(res != n);
+	RTE_LOG(DEBUG, IPSEC_ESP, "random_iv_u64 result %d\n", res);
 }
 
 /* IPv4 Tunnel */
-- 
1.9.1

^ permalink raw reply	[flat|nested] 4+ messages in thread

* Re: [dpdk-dev] [PATCH] examples/ipsec-secgw: Calling risky function
  2016-06-07  8:15 ` Sergio Gonzalez Monroy
@ 2016-06-07 13:16   ` Mrozowicz, SlawomirX
  0 siblings, 0 replies; 4+ messages in thread
From: Mrozowicz, SlawomirX @ 2016-06-07 13:16 UTC (permalink / raw)
  To: Gonzalez Monroy, Sergio; +Cc: dev


>-----Original Message-----
>From: Gonzalez Monroy, Sergio
>Sent: Tuesday, June 7, 2016 10:15 AM
>To: Mrozowicz, SlawomirX <slawomirx.mrozowicz@intel.com>
>Cc: dev@dpdk.org
>Subject: Re: [PATCH] examples/ipsec-secgw: Calling risky function
>
>On 07/06/2016 09:58, Slawomir Mrozowicz wrote:
>> lrand48 should not be used for security related applications, as
>> linear congruential algorithms are too easy to break.
>> Used a compliant random number generator /dev/urandom.
>>
>> Fixes: d299106e8e31 ("examples/ipsec-secgw: add IPsec sample
>> application") Coverity ID 124558
>>
>> Signed-off-by: Slawomir Mrozowicz <slawomirx.mrozowicz@intel.com>
>> ---
>
>I understand that lrand48 is not crypto secure, but this fix will kill performance.
>
>I already have a solution for this issue to be included in the next IPSec patch
>set that will also add support for GCM/CTR modes.
>
>Sergio

Thanks for your reply.
So for now I propose to set this problem as intentional in the Coverity tool.

Sławomir

^ permalink raw reply	[flat|nested] 4+ messages in thread

end of thread, other threads:[~2016-06-07 13:17 UTC | newest]

Thread overview: 4+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2016-06-07  8:58 [dpdk-dev] [PATCH] examples/ipsec-secgw: Calling risky function Slawomir Mrozowicz
2016-06-07  8:11 ` Thomas Monjalon
2016-06-07  8:15 ` Sergio Gonzalez Monroy
2016-06-07 13:16   ` Mrozowicz, SlawomirX

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).