Re: [Ejbca-develop] Dangerous pattern of seeding SecureRandom instances

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

Hi,

For test code it can prevent things getting stuck, as self-seeding of
SecureRandom can take a long time, especially in VM environments,
depending on configuration.

I agree it's bad template code, as someone might copy-paste it
somewhere. Imho it might be better to use a normal "Random" where
security does not matter. Then it's not mistaken for security, and
nobody will copy-paste the usage of SecureRandom.

What do you think about that?

Cheers,
Tomas

On 2019-03-12 21:02, Jaime Hablutzel wrote:
> I'm looking the following code pattern in several places of the source
> code (mostly in tests):
> 
> SecureRandom random = SecureRandom.getInstance("SHA1PRNG");
> random.setSeed(new Date().getTime());
> random.nextBytes(serno);
> 
> Where the setSeed call just before the call to nextBytes prevents the
> SHA1PRNG default implementation from feeding itself from system entropy,
> so it relies on the provided timestamp as its only source of entropy,
> which looks like a bad idea.
> 
> Anyway, the only one production code that I see being affected by this
> is one overload of the method
> org.cesecore.util.CertTools#genSelfCertForPurpose, and even when I can't
> find any real security impact (after a quick trace of the usages of this
> method), wouldn't it be better to remove all the calls
> java.security.SecureRandom#setSeed anywhere (even in tests code)  to
> prevent any future problem or mistake?.
> 
> Regards.
> 
> -- 
> Jaime Hablutzel -  RPC 994690880
> 
> 
> _______________________________________________
> Ejbca-develop mailing list
> Ejb...@li...
> https://lists.sourceforge.net/lists/listinfo/ejbca-develop
> 