1 files changed, 74 insertions, 21 deletions
diff --git a/src/lib/libc/stdlib/random.c b/src/lib/libc/stdlib/random.c
index 469b6d976a..5ce7c90ee9 100644
--- a/src/lib/libc/stdlib/random.c
+++ b/src/lib/libc/stdlib/random.c
@@ -32,12 +32,15 @@
 */
 #if defined(LIBC_SCCS) && !defined(lint)
-/*static char *sccsid = "from: @(#)random.c     5.9 (Berkeley) 2/23/91";*/
+static char *rcsid = "$OpenBSD: random.c,v 1.9 2000/04/04 14:27:00 millert Exp $";
-static char *rcsid = "$Id: random.c,v 1.1.1.1 1995/10/18 08:42:19 deraadt Exp $";
 #endif /* LIBC_SCCS and not lint */
+#include <sys/types.h>
+#include <sys/time.h>
+#include <fcntl.h>
 #include <stdio.h>
 #include <stdlib.h>
+#include <unistd.h>
 /*
 * random.c:
@@ -136,12 +139,12 @@ static int seps [MAX_TYPES] =	{ SEP_0, SEP_1, SEP_2, SEP_3, SEP_4 };
 static long randtbl[DEG_3 + 1] = {
        TYPE_3,
-        0x9a319039, 0x32d9c024, 0x9b663182, 0x5da1f342, 0xde3b81e0, 0xdf0a6fb5,
+        0x991539b1, 0x16a5bce3, 0x6774a4cd, 0x3e01511e, 0x4e508aaa, 0x61048c05, 
-        0xf103bc02, 0x48f340fb, 0x7449e56b, 0xbeb1dbb0, 0xab5c5918, 0x946554fd,
+        0xf5500617, 0x846b7115, 0x6a19892c, 0x896a97af, 0xdb48f936, 0x14898454, 
-        0x8c2e680f, 0xeb3d799f, 0xb11ee0b7, 0x2d436b86, 0xda672e2a, 0x1588ca88,
+        0x37ffd106, 0xb58bff9c, 0x59e17104, 0xcf918a49, 0x09378c83, 0x52c7a471, 
-        0xe369735d, 0x904f35f7, 0xd7158fd6, 0x6fa6f051, 0x616e6b96, 0xac94efdc,
+        0x8d293ea9, 0x1f4fc301, 0xc3db71be, 0x39b44e1c, 0xf8a44ef9, 0x4c8b80b1, 
-        0x36413f93, 0xc622c298, 0xf5a42ab8, 0x8a88d77b, 0xf5ad9d0e, 0x8999220b,
+        0x19edc328, 0x87bf4bdd, 0xc9b240e5, 0xe9ee4b1b, 0x4382aee7, 0x535b6b41, 
-        0x27fb47b9,
+        0xf3bec5da,
 };
 /*
@@ -193,15 +196,26 @@ void
 srandom(x)
        u_int x;
 {
-        register int i, j;
+        register long int test;
+        register int i;
+        ldiv_t val;
        if (rand_type == TYPE_0)
                state[0] = x;
        else {
-                j = 1;
                state[0] = x;
-                for (i = 1; i < rand_deg; i++)
+                for (i = 1; i < rand_deg; i++) {
-                        state[i] = 1103515245 * state[i - 1] + 12345;
+                        /*
+                         * Implement the following, without overflowing 31 bits:
+                         *
+                         *      state[i] = (16807 * state[i - 1]) % 2147483647;
+                         *
+                         *      2^31-1 (prime) = 2147483647 = 127773*16807+2836
+                         */
+                        val = ldiv(state[i-1], 127773);
+                        test = 16807 * val.rem - 2836 * val.quot;
+                        state[i] = test + (test < 0 ? 2147483647 : 0);
+                }
                fptr = &state[rand_sep];
                rptr = &state[0];
                for (i = 0; i < 10 * rand_deg; i++)
@@ -210,6 +224,49 @@ srandom(x)
 }
 /*
+ * srandomdev:
+ *
+ * Many programs choose the seed value in a totally predictable manner.
+ * This often causes problems.  We seed the generator using the much more
+ * secure arandom(4) interface.  Note that this particular seeding
+ * procedure can generate states which are impossible to reproduce by
+ * calling srandom() with any value, since the succeeding terms in the
+ * state buffer are no longer derived from the LC algorithm applied to
+ * a fixed seed.
+ */
+void
+srandomdev()
+{
+        int fd;
+        size_t len;
+        if (rand_type == TYPE_0)
+                len = sizeof(state[0]);
+        else
+                len = rand_deg * sizeof(state[0]);
+        if ((fd = open("/dev/arandom", O_RDONLY, 0)) != -1 &&
+            read(fd, (void *) state, len) == (ssize_t) len) {
+                close(fd);
+        } else {
+                struct timeval tv;
+                u_int junk;
+                /* XXX - this could be better */
+                gettimeofday(&tv, NULL);
+                srandom(getpid() ^ tv.tv_sec ^ tv.tv_usec ^ junk);
+                if (fd != -1)
+                        close(fd);
+                return;
+        }
+        if (rand_type != TYPE_0) {
+                fptr = &state[rand_sep];
+                rptr = &state[0];
+        }
+}
+/*
 * initstate:
 *
 * Initialize the state information in the given array of n bytes for future
@@ -232,7 +289,7 @@ char *
 initstate(seed, arg_state, n)
        u_int seed;                     /* seed for R.N.G. */
        char *arg_state;                /* pointer to state array */
-        int n;                          /* # bytes of state info */
+        size_t n;                       /* # bytes of state info */
 {
        register char *ostate = (char *)(&state[-1]);
@@ -240,11 +297,8 @@ initstate(seed, arg_state, n)
                state[-1] = rand_type;
        else
                state[-1] = MAX_TYPES * (rptr - state) + rand_type;
-        if (n < BREAK_0) {
+        if (n < BREAK_0)
-                (void)fprintf(stderr,
+                return(NULL);
-                    "random: not enough state (%d bytes); ignored.\n", n);
-                return(0);
-        }
        if (n < BREAK_1) {
                rand_type = TYPE_0;
                rand_deg = DEG_0;
@@ -293,7 +347,7 @@ initstate(seed, arg_state, n)
 */
 char *
 setstate(arg_state)
-        char *arg_state;
+        const char *arg_state;
 {
        register long *new_state = (long *)arg_state;
        register int type = new_state[0] % MAX_TYPES;
@@ -315,8 +369,7 @@ setstate(arg_state)
                rand_sep = seps[type];
                break;
        default:
-                (void)fprintf(stderr,
+                return(NULL);
-                    "random: state info corrupted; not changed.\n");
        }
        state = &new_state[1];
        if (rand_type != TYPE_0) {