mirrors/cpython
1
0
Fork 0
mirror of https://github.com/python/cpython.git synced 2025-11-02 03:01:58 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 15

bpo-44611: Use BCryptGenRandom instead of CryptGenRandom on Windows (GH-27168)

Browse source
This commit is contained in:
Dong-hee Na 2021-07-23 14:04:30 +00:00 committed by GitHub
parent a4760cc32d
commit 906fe47083
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
4 changed files with 19 additions and 41 deletions
Download patch file Download diff file Expand all files Collapse all files

8
Doc/whatsnew/3.11.rst
View file

@ -198,6 +198,14 @@ math
Dickinson in :issue:`44339`.) Dickinson in :issue:`44339`.)
os
--
* On Windows, :func:`os.urandom`: uses BCryptGenRandom API instead of CryptGenRandom API
which is deprecated from Microsoft Windows API.
(Contributed by Dong-hee Na in :issue:`44611`.)
sqlite3 sqlite3
------- -------

2
Misc/NEWS.d/next/Core and Builtins/2021-07-16-01-01-11.bpo-44611.LcfHN-.rst Normal file
View file

@ -0,0 +1,2 @@
On Windows, :func:`os.urandom`: uses BCryptGenRandom API instead of CryptGenRandom API
which is deprecated from Microsoft Windows API. Patch by Dong-hee Na.

2
PCbuild/pythoncore.vcxproj
View file

@ -106,7 +106,7 @@
<PreprocessorDefinitions Condition="$(IncludeExternals)">_Py_HAVE_ZLIB;%(PreprocessorDefinitions)</PreprocessorDefinitions> <PreprocessorDefinitions Condition="$(IncludeExternals)">_Py_HAVE_ZLIB;%(PreprocessorDefinitions)</PreprocessorDefinitions>
</ClCompile> </ClCompile>
<Link> <Link>
<AdditionalDependencies>version.lib;shlwapi.lib;ws2_32.lib;pathcch.lib;%(AdditionalDependencies)</AdditionalDependencies> <AdditionalDependencies>version.lib;shlwapi.lib;ws2_32.lib;pathcch.lib;bcrypt.lib;%(AdditionalDependencies)</AdditionalDependencies>
</Link> </Link>
</ItemDefinitionGroup> </ItemDefinitionGroup>
<ItemGroup> <ItemGroup>

48
Python/bootstrap_hash.c
View file

@ -2,9 +2,7 @@
#include "pycore_initconfig.h" #include "pycore_initconfig.h"
#ifdef MS_WINDOWS #ifdef MS_WINDOWS
# include <windows.h> # include <windows.h>
/* All sample MSDN wincrypt programs include the header below. It is at least # include <bcrypt.h>
* required with Min GW. */
# include <wincrypt.h>
#else #else
# include <fcntl.h> # include <fcntl.h>
# ifdef HAVE_SYS_STAT_H # ifdef HAVE_SYS_STAT_H
@ -25,7 +23,7 @@
# include <sanitizer/msan_interface.h> # include <sanitizer/msan_interface.h>
#endif #endif
#if defined(__APPLE__) && defined(__has_builtin) #if defined(__APPLE__) && defined(__has_builtin)
# if __has_builtin(__builtin_available) # if __has_builtin(__builtin_available)
# define HAVE_GETENTRYPY_GETRANDOM_RUNTIME __builtin_available(macOS 10.12, iOS 10.10, tvOS 10.0, watchOS 3.0, *) # define HAVE_GETENTRYPY_GETRANDOM_RUNTIME __builtin_available(macOS 10.12, iOS 10.10, tvOS 10.0, watchOS 3.0, *)
# endif # endif
@ -42,43 +40,18 @@ static int _Py_HashSecret_Initialized = 0;
#endif #endif
#ifdef MS_WINDOWS #ifdef MS_WINDOWS
static HCRYPTPROV hCryptProv = 0;
static int
win32_urandom_init(int raise)
{
/* Acquire context */
if (!CryptAcquireContextW(&hCryptProv, NULL, NULL,
PROV_RSA_FULL, CRYPT_VERIFYCONTEXT))
goto error;
return 0;
error:
if (raise) {
PyErr_SetFromWindowsErr(0);
}
return -1;
}
/* Fill buffer with size pseudo-random bytes generated by the Windows CryptoGen /* Fill buffer with size pseudo-random bytes generated by the Windows CryptoGen
API. Return 0 on success, or raise an exception and return -1 on error. */ API. Return 0 on success, or raise an exception and return -1 on error. */
static int static int
win32_urandom(unsigned char *buffer, Py_ssize_t size, int raise) win32_urandom(unsigned char *buffer, Py_ssize_t size, int raise)
{ {
if (hCryptProv == 0)
{
if (win32_urandom_init(raise) == -1) {
return -1;
}
}
while (size > 0) while (size > 0)
{ {
DWORD chunk = (DWORD)Py_MIN(size, PY_DWORD_MAX); DWORD chunk = (DWORD)Py_MIN(size, PY_DWORD_MAX);
if (!CryptGenRandom(hCryptProv, chunk, buffer)) NTSTATUS status = BCryptGenRandom(NULL, buffer, chunk, BCRYPT_USE_SYSTEM_PREFERRED_RNG);
{ if (!BCRYPT_SUCCESS(status)) {
/* CryptGenRandom() failed */ /* BCryptGenRandom() failed */
if (raise) { if (raise) {
PyErr_SetFromWindowsErr(0); PyErr_SetFromWindowsErr(0);
} }
@ -221,7 +194,7 @@ py_getrandom(void *buffer, Py_ssize_t size, int blocking, int raise)
#if defined(__APPLE__) && defined(__has_attribute) && __has_attribute(availability) #if defined(__APPLE__) && defined(__has_attribute) && __has_attribute(availability)
static int static int
py_getentropy(char *buffer, Py_ssize_t size, int raise) py_getentropy(char *buffer, Py_ssize_t size, int raise)
__attribute__((availability(macos,introduced=10.12))) __attribute__((availability(macos,introduced=10.12)))
__attribute__((availability(ios,introduced=10.0))) __attribute__((availability(ios,introduced=10.0)))
__attribute__((availability(tvos,introduced=10.0))) __attribute__((availability(tvos,introduced=10.0)))
@ -458,7 +431,7 @@ lcg_urandom(unsigned int x0, unsigned char *buffer, size_t size)
Used sources of entropy ordered by preference, preferred source first: Used sources of entropy ordered by preference, preferred source first:
- CryptGenRandom() on Windows - BCryptGenRandom() on Windows
- getrandom() function (ex: Linux and Solaris): call py_getrandom() - getrandom() function (ex: Linux and Solaris): call py_getrandom()
- getentropy() function (ex: OpenBSD): call py_getentropy() - getentropy() function (ex: OpenBSD): call py_getentropy()
- /dev/urandom device - /dev/urandom device
@ -612,12 +585,7 @@ _Py_HashRandomization_Init(const PyConfig *config)
void void
_Py_HashRandomization_Fini(void) _Py_HashRandomization_Fini(void)
{ {
#ifdef MS_WINDOWS #ifndef MS_WINDOWS
if (hCryptProv) {
CryptReleaseContext(hCryptProv, 0);
hCryptProv = 0;
}
#else
dev_urandom_close(); dev_urandom_close();
#endif #endif
} }