rand_egd.c revision 296465
1/* crypto/rand/rand_egd.c */ 2/* Written by Ulf Moeller and Lutz Jaenicke for the OpenSSL project. */ 3/* ==================================================================== 4 * Copyright (c) 1998-2000 The OpenSSL Project. All rights reserved. 5 * 6 * Redistribution and use in source and binary forms, with or without 7 * modification, are permitted provided that the following conditions 8 * are met: 9 * 10 * 1. Redistributions of source code must retain the above copyright 11 * notice, this list of conditions and the following disclaimer. 12 * 13 * 2. Redistributions in binary form must reproduce the above copyright 14 * notice, this list of conditions and the following disclaimer in 15 * the documentation and/or other materials provided with the 16 * distribution. 17 * 18 * 3. All advertising materials mentioning features or use of this 19 * software must display the following acknowledgment: 20 * "This product includes software developed by the OpenSSL Project 21 * for use in the OpenSSL Toolkit. (http://www.openssl.org/)" 22 * 23 * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to 24 * endorse or promote products derived from this software without 25 * prior written permission. For written permission, please contact 26 * openssl-core@openssl.org. 27 * 28 * 5. Products derived from this software may not be called "OpenSSL" 29 * nor may "OpenSSL" appear in their names without prior written 30 * permission of the OpenSSL Project. 31 * 32 * 6. Redistributions of any form whatsoever must retain the following 33 * acknowledgment: 34 * "This product includes software developed by the OpenSSL Project 35 * for use in the OpenSSL Toolkit (http://www.openssl.org/)" 36 * 37 * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY 38 * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE 39 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR 40 * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR 41 * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, 42 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT 43 * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; 44 * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) 45 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, 46 * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) 47 * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED 48 * OF THE POSSIBILITY OF SUCH DAMAGE. 49 * ==================================================================== 50 * 51 * This product includes cryptographic software written by Eric Young 52 * (eay@cryptsoft.com). This product includes software written by Tim 53 * Hudson (tjh@cryptsoft.com). 54 * 55 */ 56 57#include <openssl/e_os2.h> 58#include <openssl/rand.h> 59#include <openssl/buffer.h> 60 61/*- 62 * Query the EGD <URL: http://www.lothar.com/tech/crypto/>. 63 * 64 * This module supplies three routines: 65 * 66 * RAND_query_egd_bytes(path, buf, bytes) 67 * will actually query "bytes" bytes of entropy form the egd-socket located 68 * at path and will write them to buf (if supplied) or will directly feed 69 * it to RAND_seed() if buf==NULL. 70 * The number of bytes is not limited by the maximum chunk size of EGD, 71 * which is 255 bytes. If more than 255 bytes are wanted, several chunks 72 * of entropy bytes are requested. The connection is left open until the 73 * query is competed. 74 * RAND_query_egd_bytes() returns with 75 * -1 if an error occured during connection or communication. 76 * num the number of bytes read from the EGD socket. This number is either 77 * the number of bytes requested or smaller, if the EGD pool is 78 * drained and the daemon signals that the pool is empty. 79 * This routine does not touch any RAND_status(). This is necessary, since 80 * PRNG functions may call it during initialization. 81 * 82 * RAND_egd_bytes(path, bytes) will query "bytes" bytes and have them 83 * used to seed the PRNG. 84 * RAND_egd_bytes() is a wrapper for RAND_query_egd_bytes() with buf=NULL. 85 * Unlike RAND_query_egd_bytes(), RAND_status() is used to test the 86 * seed status so that the return value can reflect the seed state: 87 * -1 if an error occured during connection or communication _or_ 88 * if the PRNG has still not received the required seeding. 89 * num the number of bytes read from the EGD socket. This number is either 90 * the number of bytes requested or smaller, if the EGD pool is 91 * drained and the daemon signals that the pool is empty. 92 * 93 * RAND_egd(path) will query 255 bytes and use the bytes retreived to seed 94 * the PRNG. 95 * RAND_egd() is a wrapper for RAND_egd_bytes() with numbytes=255. 96 */ 97 98#if defined(OPENSSL_SYS_WIN32) || defined(OPENSSL_SYS_VMS) || defined(OPENSSL_SYS_MSDOS) || defined(OPENSSL_SYS_VXWORKS) || defined(OPENSSL_SYS_NETWARE) || defined(OPENSSL_SYS_VOS) 99int RAND_query_egd_bytes(const char *path, unsigned char *buf, int bytes) 100{ 101 return (-1); 102} 103 104int RAND_egd(const char *path) 105{ 106 return (-1); 107} 108 109int RAND_egd_bytes(const char *path, int bytes) 110{ 111 return (-1); 112} 113#else 114# include <openssl/opensslconf.h> 115# include OPENSSL_UNISTD 116# include <sys/types.h> 117# include <sys/socket.h> 118# ifndef NO_SYS_UN_H 119# ifdef OPENSSL_SYS_VXWORKS 120# include <streams/un.h> 121# else 122# include <sys/un.h> 123# endif 124# else 125struct sockaddr_un { 126 short sun_family; /* AF_UNIX */ 127 char sun_path[108]; /* path name (gag) */ 128}; 129# endif /* NO_SYS_UN_H */ 130# include <string.h> 131# include <errno.h> 132 133# ifndef offsetof 134# define offsetof(TYPE, MEMBER) ((size_t) &((TYPE *)0)->MEMBER) 135# endif 136 137int RAND_query_egd_bytes(const char *path, unsigned char *buf, int bytes) 138{ 139 int ret = 0; 140 struct sockaddr_un addr; 141 int len, num, numbytes; 142 int fd = -1; 143 int success; 144 unsigned char egdbuf[2], tempbuf[255], *retrievebuf; 145 146 memset(&addr, 0, sizeof(addr)); 147 addr.sun_family = AF_UNIX; 148 if (strlen(path) >= sizeof(addr.sun_path)) 149 return (-1); 150 BUF_strlcpy(addr.sun_path, path, sizeof addr.sun_path); 151 len = offsetof(struct sockaddr_un, sun_path) + strlen(path); 152 fd = socket(AF_UNIX, SOCK_STREAM, 0); 153 if (fd == -1) 154 return (-1); 155 success = 0; 156 while (!success) { 157 if (connect(fd, (struct sockaddr *)&addr, len) == 0) 158 success = 1; 159 else { 160 switch (errno) { 161# ifdef EINTR 162 case EINTR: 163# endif 164# ifdef EAGAIN 165 case EAGAIN: 166# endif 167# ifdef EINPROGRESS 168 case EINPROGRESS: 169# endif 170# ifdef EALREADY 171 case EALREADY: 172# endif 173 /* No error, try again */ 174 break; 175# ifdef EISCONN 176 case EISCONN: 177 success = 1; 178 break; 179# endif 180 default: 181 goto err; /* failure */ 182 } 183 } 184 } 185 186 while (bytes > 0) { 187 egdbuf[0] = 1; 188 egdbuf[1] = bytes < 255 ? bytes : 255; 189 numbytes = 0; 190 while (numbytes != 2) { 191 num = write(fd, egdbuf + numbytes, 2 - numbytes); 192 if (num >= 0) 193 numbytes += num; 194 else { 195 switch (errno) { 196# ifdef EINTR 197 case EINTR: 198# endif 199# ifdef EAGAIN 200 case EAGAIN: 201# endif 202 /* No error, try again */ 203 break; 204 default: 205 ret = -1; 206 goto err; /* failure */ 207 } 208 } 209 } 210 numbytes = 0; 211 while (numbytes != 1) { 212 num = read(fd, egdbuf, 1); 213 if (num == 0) 214 goto err; /* descriptor closed */ 215 else if (num > 0) 216 numbytes += num; 217 else { 218 switch (errno) { 219# ifdef EINTR 220 case EINTR: 221# endif 222# ifdef EAGAIN 223 case EAGAIN: 224# endif 225 /* No error, try again */ 226 break; 227 default: 228 ret = -1; 229 goto err; /* failure */ 230 } 231 } 232 } 233 if (egdbuf[0] == 0) 234 goto err; 235 if (buf) 236 retrievebuf = buf + ret; 237 else 238 retrievebuf = tempbuf; 239 numbytes = 0; 240 while (numbytes != egdbuf[0]) { 241 num = read(fd, retrievebuf + numbytes, egdbuf[0] - numbytes); 242 if (num == 0) 243 goto err; /* descriptor closed */ 244 else if (num > 0) 245 numbytes += num; 246 else { 247 switch (errno) { 248# ifdef EINTR 249 case EINTR: 250# endif 251# ifdef EAGAIN 252 case EAGAIN: 253# endif 254 /* No error, try again */ 255 break; 256 default: 257 ret = -1; 258 goto err; /* failure */ 259 } 260 } 261 } 262 ret += egdbuf[0]; 263 bytes -= egdbuf[0]; 264 if (!buf) 265 RAND_seed(tempbuf, egdbuf[0]); 266 } 267 err: 268 if (fd != -1) 269 close(fd); 270 return (ret); 271} 272 273int RAND_egd_bytes(const char *path, int bytes) 274{ 275 int num, ret = 0; 276 277 num = RAND_query_egd_bytes(path, NULL, bytes); 278 if (num < 1) 279 goto err; 280 if (RAND_status() == 1) 281 ret = num; 282 err: 283 return (ret); 284} 285 286int RAND_egd(const char *path) 287{ 288 return (RAND_egd_bytes(path, 255)); 289} 290 291#endif 292