Masking is not cryptographically secure #334

danielgrad · 2024-03-22T16:04:24Z

The random number generator used for masking frames is not cryptographically secure:

web_socket_channel/lib/src/copy/web_socket_impl.dart

Line 28 in 3db86bc

final _random = Random();

web_socket_channel/lib/src/copy/web_socket_impl.dart

Lines 508 to 514 in 3db86bc

 final maskBytes = [ 

 _random.nextInt(256), 

 _random.nextInt(256), 

 _random.nextInt(256), 

 _random.nextInt(256) 

 ]; 

 header.setRange(index, index + 4, maskBytes);

This is a security concern (CWE-331), and deviates from RFC 6455 section 10.3:

Clients MUST choose a new masking key for each frame, using an
algorithm that cannot be predicted by end applications that provide
data. For example, each masking could be drawn from a
cryptographically strong random number generator.

brianquinlan · 2024-04-02T00:11:13Z

This has been fixed in dart:io for over 7 years but it looks like the change never made it here despite the last import being 6 years ago.

kevmoo mentioned this issue Mar 22, 2024

use secure random number generator #335

Merged

kevmoo pushed a commit that referenced this issue Apr 4, 2024

use secure random number generator (#334) (#335)

ced3a37

kevmoo closed this as completed in #335 Apr 4, 2024

brianquinlan mentioned this issue Apr 11, 2024

Prepare shelf_web_socket 2.0 for release dart-lang/shelf#425

Merged

1 task

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Masking is not cryptographically secure #334

Masking is not cryptographically secure #334

danielgrad commented Mar 22, 2024

brianquinlan commented Apr 2, 2024

Masking is not cryptographically secure #334

Masking is not cryptographically secure #334

Comments

danielgrad commented Mar 22, 2024

brianquinlan commented Apr 2, 2024