diff --git a/i2pcontrol/I2PControl.cpp b/i2pcontrol/I2PControl.cpp index 0d642ce9..e3bdfb87 100644 --- a/i2pcontrol/I2PControl.cpp +++ b/i2pcontrol/I2PControl.cpp @@ -3,11 +3,16 @@ // TODO: handle this somewhere, but definitely not here #include "I2PControl.h" -#include "util/Log.h" #include #include -#include "util/Timestamp.h" + +#include +#include +#include + #include +#include "util/Log.h" +#include "util/Timestamp.h" #include "transport/Transports.h" #include "tunnel/Tunnel.h" #include "NetDb.h" @@ -183,6 +188,21 @@ bool I2PControlSession::authenticate(const PropertyTree& pt, Response& response) return true; } +std::string I2PControlSession::generateToken() const +{ + const std::size_t token_size = 8; // 64 bits of security + + byte random_data[token_size] = {}; + CryptoPP::AutoSeededRandomPool rng; + rng.GenerateBlock(random_data, token_size); + std::string token; + CryptoPP::StringSource ss( + random_data, token_size, true, + new CryptoPP::HexEncoder(new CryptoPP::StringSink(token)) + ); + return token; +} + void I2PControlSession::handleAuthenticate(const PropertyTree& pt, Response& response) { const int api = pt.get(I2P_CONTROL_PARAM_API); @@ -196,8 +216,7 @@ void I2PControlSession::handleAuthenticate(const PropertyTree& pt, Response& res response.setError(ErrorCode::InvalidPassword); return; } - // TODO: generate a secure token - const std::string token = std::to_string(i2p::util::GetSecondsSinceEpoch()); + const std::string token = generateToken(); response.setParam(I2P_CONTROL_PARAM_API, api); response.setParam(I2P_CONTROL_PARAM_TOKEN, token); tokens.insert(token); diff --git a/i2pcontrol/I2PControl.h b/i2pcontrol/I2PControl.h index 5d021172..3f3b52be 100644 --- a/i2pcontrol/I2PControl.h +++ b/i2pcontrol/I2PControl.h @@ -137,6 +137,12 @@ private: */ bool authenticate(const PropertyTree& pt, Response& response); + /** + * Generate a random authentication token. + * @return 8 random bytes as a hexadecimal string + */ + std::string generateToken() const; + // Method handlers void handleAuthenticate(const PropertyTree& pt, Response& response); void handleEcho(const PropertyTree& pt, Response& response);