Add weakhash Go rule for md5 and sha1 (#187)

Signed-off-by: Eric Brown <eric.brown@securesauce.dev>
securesauce · Dec 31, 2023 · 6c5ac74 · 6c5ac74
1 parent 8d89a35
commit 6c5ac74
Show file tree

Hide file tree

Showing 6 changed files with 128 additions and 2 deletions.
diff --git a/precli/rules/go/golang_org_x_crypto/ssh_insecure_ignore_hostkey.py b/precli/rules/go/golang_org_x_crypto/ssh_insecure_ignore_hostkey.py
@@ -19,7 +19,7 @@
 Example
 -------
 
-.. code-block:: python
+.. code-block:: go
    :linenos:
    :emphasize-lines: 14
 
@@ -69,7 +69,7 @@
 Implement a HostKeyCallback fucntion in order to reject connection if the
 host key is unknown to the client.
 
-.. code-block:: python
+.. code-block:: go
    :linenos:
    :emphasize-lines: 9-22, 29
 

diff --git a/precli/rules/go/stdlib/crypto/__init__.py b/precli/rules/go/stdlib/crypto/__init__.py
diff --git a/precli/rules/go/stdlib/crypto/weak_hash.py b/precli/rules/go/stdlib/crypto/weak_hash.py
@@ -0,0 +1,111 @@
+# Copyright 2023 Secure Saurce LLC
+r"""
+=========================================
+Reversible One Way Hash in Crypto Package
+=========================================
+
+The Go ``crypto`` package provides a number of functions for hashing data.
+However, some of the hash algorithms supported by hashlib are insecure and
+should not be used. These insecure hash algorithms include ``MD5``and
+``SHA-1``.
+
+The MD5 hash algorithm is a cryptographic hash function that was designed in
+the early 1990s. MD5 is no longer considered secure, and passwords hashed
+with MD5 can be easily cracked by attackers.
+
+The SHA-1 hash algorithm is also a cryptographic hash function that was
+designed in the early 1990s. SHA-1 is no longer considered secure, and
+passwords hashed with SHA-1 can be easily cracked by attackers.
+
+-------
+Example
+-------
+
+.. code-block:: go
+   :linenos:
+   :emphasize-lines: 4,9
+
+    package main
+
+    import (
+        "crypto/md5"
+        "fmt"
+    )
+
+    func main() {
+        h := md5.New()
+        h.Write([]byte("hello world\n"))
+        fmt.Printf("%x", h.Sum(nil))
+    }
+
+-----------
+Remediation
+-----------
+
+The recommendation is to swap the insecure hashing method to one of the more
+secure alternatives, ``sha256`` or ``sha512``.
+
+.. code-block:: go
+   :linenos:
+   :emphasize-lines: 4,9
+
+    package main
+
+    import (
+        "crypto/sha256"
+        "fmt"
+    )
+
+    func main() {
+        h := sha256.New()
+        h.Write([]byte("hello world\n"))
+        fmt.Printf("%x", h.Sum(nil))
+    }
+
+.. seealso::
+
+ - `Reversible One Way Hash in Crypto Package <https://docs.securesauce.dev/rules/GO001>`_
+ - `md5 package - crypto_md5 - Go Packages <https://pkg.go.dev/crypto/md5>`_
+ - `sha1 package - crypto_sha1 - Go Packages <https://pkg.go.dev/crypto/sha1>`_
+ - `CWE-328: Use of Weak Hash <https://cwe.mitre.org/data/definitions/328.html>`_
+ - `NIST Policy on Hash Functions <https://csrc.nist.gov/projects/hash-functions>`_
+
+.. versionadded:: 1.0.0
+
+"""  # noqa: E501
+from precli.core.level import Level
+from precli.core.location import Location
+from precli.core.result import Result
+from precli.rules import Rule
+
+
+class WeakHash(Rule):
+    def __init__(self, id: str):
+        super().__init__(
+            id=id,
+            name="reversible_one_way_hash",
+            full_descr=__doc__,
+            cwe_id=328,
+            message="Use of weak hash function '{}' does not meet security "
+            "expectations.",
+            targets=("call"),
+            wildcards={},
+        )
+
+    def analyze(self, context: dict, **kwargs: dict) -> Result:
+        call = kwargs.get("call")
+
+        if call.name_qualified in [
+            "crypto/md5.New",
+            "crypto/md5.Sum",
+            "crypto/sha1.New" "crypto/sha1.Sum",
+        ]:
+            return Result(
+                rule_id=self.id,
+                location=Location(
+                    file_name=context["file_name"],
+                    node=call.function_node,
+                ),
+                level=Level.ERROR,
+                message=self.message.format(call.name_qualified),
+            )
diff --git a/setup.cfg b/setup.cfg
@@ -33,6 +33,9 @@ precli.parsers =
     python = precli.parsers.python:Python
 
 precli.rules.go =
+    # precli/rules/go/stdlib/crypto/weak_hash.py
+    GO001 = precli.rules.go.stdlib.crypto.weak_hash:WeakHash
+
     # precli/rules/go/golang_org_x_crypto/ssh_insecure_ignore_hostkey.py
     GO501 = precli.rules.go.golang_org_x_crypto.ssh_insecure_ignore_hostkey:SshInsecureIgnoreHostKey
 

diff --git a/tests/unit/rules/go/stdlib/crypto/__init__.py b/tests/unit/rules/go/stdlib/crypto/__init__.py
diff --git a/tests/unit/rules/go/stdlib/crypto/examples/weakhash_md5.go b/tests/unit/rules/go/stdlib/crypto/examples/weakhash_md5.go
@@ -0,0 +1,12 @@
+package main
+
+import (
+    "crypto/md5"
+    "fmt"
+)
+
+func main() {
+    h := md5.New()
+    h.Write([]byte("hello world\n"))
+    fmt.Printf("%x", h.Sum(nil))
+}