Check digest function to prevent error on OTP Generation #170
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
…igest size lower than 18
peterthomassen
suggested changes
Sep 1, 2024
Comment on lines
+32
to
+36
| elif digest in [ | ||
| hashlib.md5, | ||
| hashlib.shake_128 | ||
| ]: | ||
| raise ValueError("selected digest function must generate digest size greater than or equals to 18 bytes") |
There was a problem hiding this comment.
If I, for some reason (like auditing instrumentation), wrap md5 in a custom call, this won't catch it. Also, the list of overspecific; there might be more of such algorithms (in the future?), and we don't want to miss those.
It will thus be best to check the .digest_size attribute, as done in otp.py:generate_otp().
Comment on lines
+35
to
+39
| elif digest in [ | ||
| hashlib.md5, | ||
| hashlib.shake_128 | ||
| ]: | ||
| raise ValueError("selected digest function must generate digest size greater than or equals to 18 bytes") |
There was a problem hiding this comment.
I think this can go away if the check is one in otp.py:generate_otp(): It is not necessary, and there should only be one place where the relevant check is done.
|
Thanks for your contribution. There are a few issues that I will fix, but the idea is solid. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Summary
This pull request introduces a validation check in the
initandgenerate_otpfunctions to prevent errors caused by incompatible digest functions and inadequate digest sizes. The changes aim to improve the stability and reliability of OTP generation. While theRFC4226states that the base function issha1, the existing code will allow user to use other hash functions such asMD5andSHAKE-128due to their availability in the hashlib.Changes Made
Digest Function Validation
Added checks to disallow the use of
hashlib.md5andhashlib.shake_128as digest functions in the__init__function ofotp.py,hotp.py, andtotp.py. These functions are not suitable for OTP generation due to their shorter hash sizes.Digest Size Check
Implemented a check to ensure that the digest size is not lower than
18 bytes. This prevents anIndexErrorthat could occur when the last hash byte is0xF, causing thegenerate_otpfunction to set the offset to15. The subsequent operation would attempt to accesshmac_hash[offset + 1]and so on, leading to an out-of-bounds error formd5andshake128due to their shorter digest lengths.Impact
Testing
hashlib.md5andhashlib.shake128are correctly rejected as digest functions on__init__.generate_otp.DigestFunctionTestunit test as a negative test case where it will trigger an error if the selected digest function ismd5orshake_128.