Archives
/
tty-share
mirror of https://github.com/elisescu/tty-share
2
0
Fork 0
Code Issues Releases Wiki Activity

Use a more secure session ID generator

Browse Source
pull/14/merge
Vasile Popescu 6 years ago
parent a87782762d
commit 9c7e71c54c
1 changed files with 10 additions and 4 deletions
Show Stats Download Patch File Download Diff File

14
tty-server/session.go
Unescape Escape View File

@ -2,11 +2,11 @@ package main
import ( import (
"container/list" "container/list"
"crypto/rand"
"encoding/base64"
"encoding/json" "encoding/json"
"fmt"
"net" "net"
"sync" "sync"
"time"
. "github.com/elisescu/tty-share/common" . "github.com/elisescu/tty-share/common"
) )
@ -27,8 +27,14 @@ type ttyShareSession struct {
} }
func generateNewSessionID() string { func generateNewSessionID() string {
// TODO: replace this with a proper way of generating secret session IDs binID := make([]byte, 32)
return fmt.Sprintf("%x", time.Now().UnixNano()) _, err := rand.Read(binID)
if err != nil {
panic(err)
}
return base64.URLEncoding.EncodeToString([]byte(binID))
} }
func newTTYShareSession(conn net.Conn, serverURL string) *ttyShareSession { func newTTYShareSession(conn net.Conn, serverURL string) *ttyShareSession {

Write Preview
Loading…
Cancel
Save