urandom is never closed

dsprenkels / randombytes

A portable C library for generating cypto-secure random bytes

MIT License

96 stars 37 forks source link

urandom is never closed #33

Closed marco-palumbi closed 3 years ago

marco-palumbi commented 3 years ago

Hi Daan, I found a little issue here: https://github.com/dsprenkels/randombytes/blob/a29d979988c53b0a5e3db15ea3c14f247ffdc424/randombytes.c#L221

/dev/urandom is opened at each call of the randombytes_linux_randombytes_urandom() but never closed. I would suggest ether:

close at the exit of the function
use for fd a static variable initialized to -1 test it and if equal to -1 open the device and assign the descriptor to fd

the last could save some time if the function is called repeatedly

thomwiggers commented 3 years ago

use for fd a static variable initialized to -1 test it and if equal to -1 open the device and assign the descriptor to fd

the last could save some time if the function is called repeatedly

I don't think that's thread-safe; and using thread_local probably imposes requirements that you don't want to include everywhere...

marco-palumbi commented 3 years ago

probably you are right @thomwiggers. for a thread-safe safe implementation remain the option of closing the descriptor at each call or use a sort of init_random() to be called at the very beginning from the first thread..

thomwiggers commented 3 years ago

I highly doubt that's worth the complexity for what is essentially a fallback used only if more modern methods (getentropy) aren't available.

marco-palumbi commented 3 years ago

well.. if the code is there it can be used... and if you use it for any reason if you call the function for a while, you will get an error because you reach the maximum for the open file descriptors. I got the bug because I used this code and after a while I start getting the error "Too many open files"

please note that, with the current implementation, each time you call the randombytes() function a new file descriptor is opened

thomwiggers commented 3 years ago

To clarify: closing the file descriptor is worth it; thread-local storage or init functions aren't.

marco-palumbi commented 3 years ago

We are on the same page then.. I had interpreted your previous comment in a more general way, sorry for that

dsprenkels commented 3 years ago

Hrm. This is an interesting point. This is a bug and should be fixed.

I see two options:

We make no guarantees about the performance, and we are only using /dev/urandom on older linux kernels, so close the file after every call.
When we are using /dev/urandom we are always using linux (right?), so we will always have access to some kind of linux synchronization primitives (maybe futex?). So in this case we can open the file once, and use the linux synchronization primitives to ensure we only open it once.

I have no clue how we would implement 2., so my vote would go to 1.

dsprenkels commented 3 years ago

@marco-palumbi PS Thanks for the bug report!