refactor: Use tox rng to seed the keypair generation.

iphydf · iphydf · commit 5d7b7a7bbcaf · 2024-02-11T18:56:51.000Z
diff --git a/other/docker/goblint/sodium.c b/other/docker/goblint/sodium.c
@@ -2,7 +2,7 @@
 
 #include <string.h>
 
-int crypto_sign_keypair(unsigned char *pk, unsigned char *sk)
+int crypto_sign_seed_keypair(unsigned char *pk, unsigned char *sk, const unsigned char *seed)
 {
     memset(pk, 0, 32);
     memset(sk, 0, 32);
diff --git a/toxcore/crypto_core.c b/toxcore/crypto_core.c
@@ -45,10 +45,12 @@ static_assert(CRYPTO_SIGN_PUBLIC_KEY_SIZE == crypto_sign_PUBLICKEYBYTES,
 static_assert(CRYPTO_SIGN_SECRET_KEY_SIZE == crypto_sign_SECRETKEYBYTES,
               "CRYPTO_SIGN_SECRET_KEY_SIZE should be equal to crypto_sign_SECRETKEYBYTES");
 
-bool create_extended_keypair(uint8_t pk[EXT_PUBLIC_KEY_SIZE], uint8_t sk[EXT_SECRET_KEY_SIZE])
+bool create_extended_keypair(uint8_t pk[EXT_PUBLIC_KEY_SIZE], uint8_t sk[EXT_SECRET_KEY_SIZE], const Random *rng)
 {
     /* create signature key pair */
-    crypto_sign_keypair(pk + ENC_PUBLIC_KEY_SIZE, sk + ENC_SECRET_KEY_SIZE);
+    uint8_t seed[crypto_sign_SEEDBYTES];
+    random_bytes(rng, seed, crypto_sign_SEEDBYTES);
+    crypto_sign_seed_keypair(pk + ENC_PUBLIC_KEY_SIZE, sk + ENC_SECRET_KEY_SIZE, seed);
 
     /* convert public signature key to public encryption key */
     const int res1 = crypto_sign_ed25519_pk_to_curve25519(pk, pk + ENC_PUBLIC_KEY_SIZE);
diff --git a/toxcore/crypto_core.h b/toxcore/crypto_core.h
@@ -333,11 +333,12 @@ bool public_key_valid(const uint8_t public_key[CRYPTO_PUBLIC_KEY_SIZE]);
  *
  * @param[out] pk The buffer where the public key will be stored. Must have room for EXT_PUBLIC_KEY_SIZE bytes.
  * @param[out] sk The buffer where the secret key will be stored. Must have room for EXT_SECRET_KEY_SIZE bytes.
+ * @param rng The random number generator to use for the key generator seed.
  *
  * @retval true on success.
  */
 non_null()
-bool create_extended_keypair(uint8_t pk[EXT_PUBLIC_KEY_SIZE], uint8_t sk[EXT_SECRET_KEY_SIZE]);
+bool create_extended_keypair(uint8_t pk[EXT_PUBLIC_KEY_SIZE], uint8_t sk[EXT_SECRET_KEY_SIZE], const Random *rng);
 
 /** Functions for groupchat extended keys */
 non_null() const uint8_t *get_enc_key(const uint8_t *key);
diff --git a/toxcore/crypto_core_test.cc b/toxcore/crypto_core_test.cc
@@ -75,7 +75,7 @@ TEST(CryptoCore, Signatures)
     ExtPublicKey pk;
     ExtSecretKey sk;
 
-    EXPECT_TRUE(create_extended_keypair(pk.data(), sk.data()));
+    EXPECT_TRUE(create_extended_keypair(pk.data(), sk.data(), rng));
 
     std::vector<uint8_t> message{0};
     message.clear();
diff --git a/toxcore/group_chats.c b/toxcore/group_chats.c
@@ -7656,8 +7656,8 @@ int gc_group_load(GC_Session *c, Bin_Unpack *bu)
     return group_number;
 }
 
-int gc_group_add(GC_Session *c, Group_Privacy_State privacy_state, const uint8_t *group_name,
-                 uint16_t group_name_length,
+int gc_group_add(GC_Session *c, Group_Privacy_State privacy_state,
+                 const uint8_t *group_name, uint16_t group_name_length,
                  const uint8_t *nick, size_t nick_length)
 {
     if (group_name_length > MAX_GC_GROUP_NAME_SIZE) {
@@ -7690,7 +7690,7 @@ int gc_group_add(GC_Session *c, Group_Privacy_State privacy_state, const uint8_t
 
     crypto_memlock(chat->chat_secret_key, sizeof(chat->chat_secret_key));
 
-    create_extended_keypair(chat->chat_public_key, chat->chat_secret_key);
+    create_extended_keypair(chat->chat_public_key, chat->chat_secret_key, chat->rng);
 
     if (!init_gc_shared_state_founder(chat, privacy_state, group_name, group_name_length)) {
         group_delete(c, chat);
@@ -8439,7 +8439,7 @@ static bool create_new_chat_ext_keypair(GC_Chat *chat)
 {
     crypto_memlock(chat->self_secret_key, sizeof(chat->self_secret_key));
 
-    if (!create_extended_keypair(chat->self_public_key, chat->self_secret_key)) {
+    if (!create_extended_keypair(chat->self_public_key, chat->self_secret_key, chat->rng)) {
         crypto_memunlock(chat->self_secret_key, sizeof(chat->self_secret_key));
         return false;
     }
diff --git a/toxcore/group_moderation_test.cc b/toxcore/group_moderation_test.cc
@@ -194,6 +194,7 @@ struct SanctionsListMod : ::testing::Test {
     ExtPublicKey pk;
     ExtSecretKey sk;
     Logger *log = logger_new();
+    Test_Random rng;
     Test_Memory mem;
     Moderation mod{mem};
 
@@ -203,7 +204,7 @@ struct SanctionsListMod : ::testing::Test {
 
     void SetUp() override
     {
-        ASSERT_TRUE(create_extended_keypair(pk.data(), sk.data()));
+        ASSERT_TRUE(create_extended_keypair(pk.data(), sk.data(), rng));
 
         mod.log = log;
 

Original file line number	Diff line number	Diff line change
`@@ -2,7 +2,7 @@`
`2`	`2`
`3`	`3`	`#include <string.h>`
`4`	`4`
`5`		`-int crypto_sign_keypair(unsigned char pk, unsigned char sk)`
	`5`	`+int crypto_sign_seed_keypair(unsigned char pk, unsigned char sk, const unsigned char *seed)`
`6`	`6`	`{`
`7`	`7`	`memset(pk, 0, 32);`
`8`	`8`	`memset(sk, 0, 32);`
Original file line number	Diff line number	Diff line change
`@@ -333,11 +333,12 @@ bool public_key_valid(const uint8_t public_key[CRYPTO_PUBLIC_KEY_SIZE]);`
`333`	`333`	`*`
`334`	`334`	`* @param[out] pk The buffer where the public key will be stored. Must have room for EXT_PUBLIC_KEY_SIZE bytes.`
`335`	`335`	`* @param[out] sk The buffer where the secret key will be stored. Must have room for EXT_SECRET_KEY_SIZE bytes.`
	`336`	`+ * @param rng The random number generator to use for the key generator seed.`
`336`	`337`	`*`
`337`	`338`	`* @retval true on success.`
`338`	`339`	`*/`
`339`	`340`	`non_null()`
`340`		`-bool create_extended_keypair(uint8_t pk[EXT_PUBLIC_KEY_SIZE], uint8_t sk[EXT_SECRET_KEY_SIZE]);`
	`341`	`+bool create_extended_keypair(uint8_t pk[EXT_PUBLIC_KEY_SIZE], uint8_t sk[EXT_SECRET_KEY_SIZE], const Random *rng);`
`341`	`342`
`342`	`343`	`/** Functions for groupchat extended keys */`
`343`	`344`	`non_null() const uint8_t get_enc_key(const uint8_t key);`
Original file line number	Diff line number	Diff line change
`@@ -7656,8 +7656,8 @@ int gc_group_load(GC_Session c, Bin_Unpack bu)`
`7656`	`7656`	`return group_number;`
`7657`	`7657`	`}`
`7658`	`7658`
`7659`		`-int gc_group_add(GC_Session c, Group_Privacy_State privacy_state, const uint8_t group_name,`
`7660`		`- uint16_t group_name_length,`
	`7659`	`+int gc_group_add(GC_Session *c, Group_Privacy_State privacy_state,`
	`7660`	`+ const uint8_t *group_name, uint16_t group_name_length,`
`7661`	`7661`	`const uint8_t *nick, size_t nick_length)`
`7662`	`7662`	`{`
`7663`	`7663`	`if (group_name_length > MAX_GC_GROUP_NAME_SIZE) {`
`@@ -7690,7 +7690,7 @@ int gc_group_add(GC_Session *c, Group_Privacy_State privacy_state, const uint8_t`
`7690`	`7690`
`7691`	`7691`	`crypto_memlock(chat->chat_secret_key, sizeof(chat->chat_secret_key));`
`7692`	`7692`
`7693`		`- create_extended_keypair(chat->chat_public_key, chat->chat_secret_key);`
	`7693`	`+ create_extended_keypair(chat->chat_public_key, chat->chat_secret_key, chat->rng);`
`7694`	`7694`
`7695`	`7695`	`if (!init_gc_shared_state_founder(chat, privacy_state, group_name, group_name_length)) {`
`7696`	`7696`	`group_delete(c, chat);`
`@@ -8439,7 +8439,7 @@ static bool create_new_chat_ext_keypair(GC_Chat *chat)`
`8439`	`8439`	`{`
`8440`	`8440`	`crypto_memlock(chat->self_secret_key, sizeof(chat->self_secret_key));`
`8441`	`8441`
`8442`		`- if (!create_extended_keypair(chat->self_public_key, chat->self_secret_key)) {`
	`8442`	`+ if (!create_extended_keypair(chat->self_public_key, chat->self_secret_key, chat->rng)) {`
`8443`	`8443`	`crypto_memunlock(chat->self_secret_key, sizeof(chat->self_secret_key));`
`8444`	`8444`	`return false;`
`8445`	`8445`	`}`