serv/caddy
1
0
Fork 0
mirror of https://github.com/caddyserver/caddy.git synced 2025-02-01 14:48:22 +03:00
Code Issues Projects Releases Packages Wiki Activity Actions

D'oh, commit all changes to file

Browse source
This commit is contained in:
Matthew Holt 2017-04-15 22:58:34 -06:00
parent 7a7e3d160b
commit 8d1da68b47
No known key found for this signature in database
GPG key ID: 2A349DD577D586A5
1 changed files with 26 additions and 20 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

46
caddyhttp/httpserver/context.go
View file

@ -5,6 +5,7 @@ import (
"crypto/rand" "crypto/rand"
"fmt" "fmt"
"io/ioutil" "io/ioutil"
mathrand "math/rand"
"net" "net"
"net/http" "net/http"
"net/url" "net/url"
@ -356,35 +357,40 @@ func (c Context) IsMITM() bool {
} }
// RandomString generates a random string of random length given // RandomString generates a random string of random length given
// length bounds. Thanks to http://stackoverflow.com/a/31832326/1048862 // length bounds. Thanks to http://stackoverflow.com/a/35615565/1048862
// for the clever technique that is fast and maintains proper // for the clever technique that is fairly fast, secure, and maintains
// distributions over the dictionary. // proper distributions over the dictionary.
func (c Context) RandomString(minLen, maxLen int) string { func (c Context) RandomString(minLen, maxLen int) string {
const ( const (
letterBytes = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789" letterBytes = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789"
letterIdxBits = 6 // 6 bits to represent a letter index letterIdxBits = 6 // 6 bits to represent 64 possibilities (indexes)
letterIdxMask = 1<<letterIdxBits - 1 // All 1-bits, as many as letterIdxBits letterIdxMask = 1<<letterIdxBits - 1 // all 1-bits, as many as letterIdxBits
letterIdxMax = 63 / letterIdxBits // # of letter indices fitting in 63 bits
) )
if minLen < 0 || maxLen < 0 || maxLen < minLen { if minLen < 0 || maxLen < 0 || maxLen < minLen {
return "" return ""
} }
src := rand.NewSource(time.Now().UnixNano()) n := mathrand.Intn(maxLen-minLen+1) + minLen // choose actual length
n := rand.Intn(maxLen-minLen+1) + minLen // choose actual length
b := make([]byte, n) // secureRandomBytes returns a number of bytes using crypto/rand.
for i, cache, remain := n-1, src.Int63(), letterIdxMax; i >= 0; { secureRandomBytes := func(numBytes int) []byte {
if remain == 0 { randomBytes := make([]byte, numBytes)
cache, remain = src.Int63(), letterIdxMax rand.Read(randomBytes)
} return randomBytes
if idx := int(cache & letterIdxMask); idx < len(letterBytes) {
b[i] = letterBytes[idx]
i--
}
cache >>= letterIdxBits
remain--
} }
return string(b) result := make([]byte, n)
bufferSize := int(float64(n) * 1.3)
for i, j, randomBytes := 0, 0, []byte{}; i < n; j++ {
if j%bufferSize == 0 {
randomBytes = secureRandomBytes(bufferSize)
}
if idx := int(randomBytes[j%n] & letterIdxMask); idx < len(letterBytes) {
result[i] = letterBytes[idx]
i++
}
}
return string(result)
} }