Page MenuHomeFreeBSD
Differential D30674

crypt_r(3): fix reentrancy problems with DES
ClosedPublic
Actions

Authored by trasz on Jun 7 2021, 2:55 PM.
Tags
None
Referenced Files
Unknown Object (File)
Nov 13 2024, 6:19 AM
Unknown Object (File)
Oct 22 2024, 8:30 AM
Unknown Object (File)
Oct 16 2024, 12:17 AM
Unknown Object (File)
Oct 13 2024, 5:32 PM
Unknown Object (File)
Oct 5 2024, 10:59 AM
Unknown Object (File)
Oct 5 2024, 6:33 AM
Unknown Object (File)
Oct 5 2024, 6:01 AM
Unknown Object (File)
Oct 2 2024, 4:15 PM
View All 72 Files
Subscribers
imp
markj
NetApp

Details

Reviewers
ed
allanjude
markj
Group Reviewers
secteam
Commits
rG7d681ad774f0: crypt_r(3): fix reentrancy problems with DES
Summary

This code was originally written for non-reentrant crypt(3).
In 5f521d7ba72, a thread-safe crypt_r(3) was introduced. However,
it looks like the DES implementation is still not re-entrant;
routines like setup_salt() or des_setkey() still use global
variables.

Instead of something drastic, eg removing DES support altogether,
just mark those variables as thread-local.

Given that this only applies to DES, I think the impact is minimal.

Sponsored by: NetApp, Inc.
Sponsored by: Klara, Inc.

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

trasz created this revision.Jun 7 2021, 2:55 PM
Herald added a subscriber: imp. · View Herald TranscriptJun 7 2021, 2:55 PM
trasz requested review of this revision.Jun 7 2021, 2:55 PM
Harbormaster completed remote builds in B39769: Diff 90524.Jun 7 2021, 2:55 PM
trasz added reviewers: secteam, ed, allanjude.Jun 7 2021, 2:56 PM
trasz added a subscriber: NetApp.
markj added a subscriber: markj.Jun 7 2021, 3:11 PM
markj added inline comments.
secure/lib/libcrypt/crypt-des.c
77

It looks like this and some of the other tables below should be marked const. Can we do that as a part of this change?

83–84

Doesn't this need to be thread-local as well?

trasz updated this revision to Diff 90580.Jun 8 2021, 1:30 PM

Add const, move 'static' first, and add __thread for stuff touched
by des_init().

Harbormaster completed remote builds in B39800: Diff 90580.Jun 8 2021, 1:30 PM
trasz marked 2 inline comments as done.Jun 8 2021, 1:31 PM
trasz added inline comments.
secure/lib/libcrypt/crypt-des.c
77

Good idea, done.

83–84

These only seem to be written to by des_init(), so they should be equal for all threads, but... yeah, you're right.

markj accepted this revision as: markj.Jun 8 2021, 1:59 PM

I don't see any problems with the change, but note that this adds something like 30KB of data per thread. Probably not the end of the world but not ideal either.

This revision is now accepted and ready to land.Jun 8 2021, 1:59 PM
trasz marked 2 inline comments as done.Jun 9 2021, 12:29 PM

Yeah; I think it's acceptable, given it's a separate library and not libc.

(Tinderboxed.)

Closed by commit rG7d681ad774f0: crypt_r(3): fix reentrancy problems with DES (authored by trasz). · Explain WhyJun 15 2021, 10:07 AM
This revision was automatically updated to reflect the committed changes.
trasz added a commit: rG7d681ad774f0: crypt_r(3): fix reentrancy problems with DES.

Revision Contents
Changeset List

PathSize
secure/
lib/
libcrypt/
58 lines

Diff 90909

View Options

secure/lib/libcrypt/crypt-des.c

Loading...