1 files changed, 79 insertions, 159 deletions
diff --git a/src/lib/libcrypto/rand/rand_lib.c b/src/lib/libcrypto/rand/rand_lib.c
index 243a87ddfb..6d61b3d3f6 100644
--- a/src/lib/libcrypto/rand/rand_lib.c
+++ b/src/lib/libcrypto/rand/rand_lib.c
@@ -1,177 +1,97 @@
-/* crypto/rand/rand_lib.c */
+/*
-/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
+ * Copyright (c) 2014 Ted Unangst <tedu@openbsd.org>
- * All rights reserved.
 *
- * This package is an SSL implementation written
+ * Permission to use, copy, modify, and distribute this software for any
- * by Eric Young (eay@cryptsoft.com).
+ * purpose with or without fee is hereby granted, provided that the above
- * The implementation was written so as to conform with Netscapes SSL.
+ * copyright notice and this permission notice appear in all copies.
- * 
+ *
- * This library is free for commercial and non-commercial use as long as
+ * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
- * the following conditions are aheared to.  The following conditions
+ * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
- * apply to all code found in this distribution, be it the RC4, RSA,
+ * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
- * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
+ * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
- * included with this distribution is covered by the same copyright terms
+ * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
- * except that the holder is Tim Hudson (tjh@cryptsoft.com).
+ * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
- * 
+ * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
- * Copyright remains Eric Young's, and as such any Copyright notices in
- * the code are not to be removed.
- * If this package is used in a product, Eric Young should be given attribution
- * as the author of the parts of the library used.
- * This can be in the form of a textual message at program startup or
- * in documentation (online or textual) provided with the package.
- * 
- * Redistribution and use in source and binary forms, with or without
- * modification, are permitted provided that the following conditions
- * are met:
- * 1. Redistributions of source code must retain the copyright
- *    notice, this list of conditions and the following disclaimer.
- * 2. Redistributions in binary form must reproduce the above copyright
- *    notice, this list of conditions and the following disclaimer in the
- *    documentation and/or other materials provided with the distribution.
- * 3. All advertising materials mentioning features or use of this software
- *    must display the following acknowledgement:
- *    "This product includes cryptographic software written by
- *     Eric Young (eay@cryptsoft.com)"
- *    The word 'cryptographic' can be left out if the rouines from the library
- *    being used are not cryptographic related :-).
- * 4. If you include any Windows specific code (or a derivative thereof) from 
- *    the apps directory (application code) you must include an acknowledgement:
- *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
- * 
- * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
- * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
- * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
- * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
- * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
- * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
- * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
- * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
- * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
- * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
- * SUCH DAMAGE.
- * 
- * The licence and distribution terms for any publically available version or
- * derivative of this code cannot be changed.  i.e. this code cannot simply be
- * copied and put under another distribution licence
- * [including the GNU Public Licence.]
 */
-#include <stdio.h>
-#include <time.h>
 #include "cryptlib.h"
 #include <openssl/rand.h>
-#ifndef OPENSSL_NO_ENGINE
+#include <stdlib.h>
-#include <openssl/engine.h>
-#endif
-#ifndef OPENSSL_NO_ENGINE
+/*
-/* non-NULL if default_RAND_meth is ENGINE-provided */
+ * The useful functions in this file are at the bottom.
-static ENGINE *funct_ref =NULL;
+ */
-#endif
+int
-static const RAND_METHOD *default_RAND_meth = NULL;
+RAND_set_rand_method(const RAND_METHOD *meth)
+{
-int RAND_set_rand_method(const RAND_METHOD *meth)
-        {
-#ifndef OPENSSL_NO_ENGINE
-        if(funct_ref)
-                {
-                ENGINE_finish(funct_ref);
-                funct_ref = NULL;
-                }
-#endif
-        default_RAND_meth = meth;
        return 1;
-        }
+}
-const RAND_METHOD *RAND_get_rand_method(void)
+const RAND_METHOD *
-        {
+RAND_get_rand_method(void)
-        if (!default_RAND_meth)
+{
-                {
+        return NULL;
-#ifndef OPENSSL_NO_ENGINE
+}
-                ENGINE *e = ENGINE_get_default_RAND();
-                if(e)
+RAND_METHOD *
-                        {
+RAND_SSLeay(void)
-                        default_RAND_meth = ENGINE_get_RAND(e);
+{
-                        if(!default_RAND_meth)
+        return NULL;
-                                {
+}
-                                ENGINE_finish(e);
-                                e = NULL;
-                                }
-                        }
-                if(e)
-                        funct_ref = e;
-                else
-#endif
-                        default_RAND_meth = RAND_SSLeay();
-                }
-        return default_RAND_meth;
-        }
 #ifndef OPENSSL_NO_ENGINE
-int RAND_set_rand_engine(ENGINE *engine)
+int
-        {
+RAND_set_rand_engine(ENGINE *engine)
-        const RAND_METHOD *tmp_meth = NULL;
+{
-        if(engine)
-                {
-                if(!ENGINE_init(engine))
-                        return 0;
-                tmp_meth = ENGINE_get_RAND(engine);
-                if(!tmp_meth)
-                        {
-                        ENGINE_finish(engine);
-                        return 0;
-                        }
-                }
-        /* This function releases any prior ENGINE so call it first */
-        RAND_set_rand_method(tmp_meth);
-        funct_ref = engine;
        return 1;
-        }
+}
 #endif
-void RAND_cleanup(void)
+void
-        {
+RAND_cleanup(void)
-        const RAND_METHOD *meth = RAND_get_rand_method();
+{
-        if (meth && meth->cleanup)
-                meth->cleanup();
+}
-        RAND_set_rand_method(NULL);
-        }
+void
+RAND_seed(const void *buf, int num)
+{
+}
-void RAND_seed(const void *buf, int num)
+void
-        {
+RAND_add(const void *buf, int num, double entropy)
-        const RAND_METHOD *meth = RAND_get_rand_method();
+{
-        if (meth && meth->seed)
-                meth->seed(buf,num);
-        }
-void RAND_add(const void *buf, int num, double entropy)
+}
-        {
-        const RAND_METHOD *meth = RAND_get_rand_method();
-        if (meth && meth->add)
-                meth->add(buf,num,entropy);
-        }
-int RAND_bytes(unsigned char *buf, int num)
+int
-        {
+RAND_status(void)
-        const RAND_METHOD *meth = RAND_get_rand_method();
+{
-        if (meth && meth->bytes)
+        return 1;
-                return meth->bytes(buf,num);
+}
-        return(-1);
-        }
-int RAND_pseudo_bytes(unsigned char *buf, int num)
+int
-        {
+RAND_poll(void)
-        const RAND_METHOD *meth = RAND_get_rand_method();
+{
-        if (meth && meth->pseudorand)
+       return 1;
-                return meth->pseudorand(buf,num);
+}
-        return(-1);
-        }
-int RAND_status(void)
+/*
-        {
+ * Hurray. You've made it to the good parts.
-        const RAND_METHOD *meth = RAND_get_rand_method();
+ */
-        if (meth && meth->status)
+int
-                return meth->status();
+RAND_bytes(unsigned char *buf, int num)
-        return 0;
+{
-        }
+        if (num > 0)
+                arc4random_buf(buf, num);
+        return 1;
+}
+int
+RAND_pseudo_bytes(unsigned char *buf, int num)
+{
+        if (num > 0)
+                arc4random_buf(buf, num);
+        return 1;
+}

diff --git a/src/lib/libcrypto/rand/rand_lib.c b/src/lib/libcrypto/rand/rand_lib.c index 243a87ddfb..6d61b3d3f6 100644 --- a/src/lib/libcrypto/rand/rand_lib.c +++ b/src/lib/libcrypto/rand/rand_lib.c
@@ -1,177 +1,97 @@
1	/* crypto/rand/rand_lib.c */	1	/*
2	/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)	2	* Copyright (c) 2014 Ted Unangst <tedu@openbsd.org>
3	* All rights reserved.
4	*	3	*
5	* This package is an SSL implementation written	4	* Permission to use, copy, modify, and distribute this software for any
6	* by Eric Young (eay@cryptsoft.com).	5	* purpose with or without fee is hereby granted, provided that the above
7	* The implementation was written so as to conform with Netscapes SSL.	6	* copyright notice and this permission notice appear in all copies.
8	*	7	*
9	* This library is free for commercial and non-commercial use as long as	8	* THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
10	* the following conditions are aheared to. The following conditions	9	* WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
11	* apply to all code found in this distribution, be it the RC4, RSA,	10	* MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
12	* lhash, DES, etc., code; not just the SSL code. The SSL documentation	11	* ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
13	* included with this distribution is covered by the same copyright terms	12	* WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
14	* except that the holder is Tim Hudson (tjh@cryptsoft.com).	13	* ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
15	*	14	* OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
16	* Copyright remains Eric Young's, and as such any Copyright notices in
17	* the code are not to be removed.
18	* If this package is used in a product, Eric Young should be given attribution
19	* as the author of the parts of the library used.
20	* This can be in the form of a textual message at program startup or
21	* in documentation (online or textual) provided with the package.
22	*
23	* Redistribution and use in source and binary forms, with or without
24	* modification, are permitted provided that the following conditions
25	* are met:
26	* 1. Redistributions of source code must retain the copyright
27	* notice, this list of conditions and the following disclaimer.
28	* 2. Redistributions in binary form must reproduce the above copyright
29	* notice, this list of conditions and the following disclaimer in the
30	* documentation and/or other materials provided with the distribution.
31	* 3. All advertising materials mentioning features or use of this software
32	* must display the following acknowledgement:
33	* "This product includes cryptographic software written by
34	* Eric Young (eay@cryptsoft.com)"
35	* The word 'cryptographic' can be left out if the rouines from the library
36	* being used are not cryptographic related :-).
37	* 4. If you include any Windows specific code (or a derivative thereof) from
38	* the apps directory (application code) you must include an acknowledgement:
39	* "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
40	*
41	* THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
42	* ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
43	* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
44	* ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
45	* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
46	* DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
47	* OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
48	* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
49	* LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
50	* OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
51	* SUCH DAMAGE.
52	*
53	* The licence and distribution terms for any publically available version or
54	* derivative of this code cannot be changed. i.e. this code cannot simply be
55	* copied and put under another distribution licence
56	* [including the GNU Public Licence.]
57	*/	15	*/
58
59	#include <stdio.h>
60	#include <time.h>
61	#include "cryptlib.h"	16	#include "cryptlib.h"
62	#include <openssl/rand.h>	17	#include <openssl/rand.h>
63		18
64	#ifndef OPENSSL_NO_ENGINE	19	#include <stdlib.h>
65	#include <openssl/engine.h>
66	#endif
67		20
68	#ifndef OPENSSL_NO_ENGINE	21	/*
69	/* non-NULL if default_RAND_meth is ENGINE-provided */	22	* The useful functions in this file are at the bottom.
70	static ENGINE *funct_ref =NULL;	23	*/
71	#endif	24	int
72	static const RAND_METHOD *default_RAND_meth = NULL;	25	RAND_set_rand_method(const RAND_METHOD *meth)
73		26	{
74	int RAND_set_rand_method(const RAND_METHOD *meth)
75	{
76	#ifndef OPENSSL_NO_ENGINE
77	if(funct_ref)
78	{
79	ENGINE_finish(funct_ref);
80	funct_ref = NULL;
81	}
82	#endif
83	default_RAND_meth = meth;
84	return 1;	27	return 1;
85	}	28	}
86		29
87	const RAND_METHOD *RAND_get_rand_method(void)	30	const RAND_METHOD *
88	{	31	RAND_get_rand_method(void)
89	if (!default_RAND_meth)	32	{
90	{	33	return NULL;
91	#ifndef OPENSSL_NO_ENGINE	34	}
92	ENGINE *e = ENGINE_get_default_RAND();	35
93	if(e)	36	RAND_METHOD *
94	{	37	RAND_SSLeay(void)
95	default_RAND_meth = ENGINE_get_RAND(e);	38	{
96	if(!default_RAND_meth)	39	return NULL;
97	{	40	}
98	ENGINE_finish(e);
99	e = NULL;
100	}
101	}
102	if(e)
103	funct_ref = e;
104	else
105	#endif
106	default_RAND_meth = RAND_SSLeay();
107	}
108	return default_RAND_meth;
109	}
110		41
111	#ifndef OPENSSL_NO_ENGINE	42	#ifndef OPENSSL_NO_ENGINE
112	int RAND_set_rand_engine(ENGINE *engine)	43	int
113	{	44	RAND_set_rand_engine(ENGINE *engine)
114	const RAND_METHOD *tmp_meth = NULL;	45	{
115	if(engine)
116	{
117	if(!ENGINE_init(engine))
118	return 0;
119	tmp_meth = ENGINE_get_RAND(engine);
120	if(!tmp_meth)
121	{
122	ENGINE_finish(engine);
123	return 0;
124	}
125	}
126	/* This function releases any prior ENGINE so call it first */
127	RAND_set_rand_method(tmp_meth);
128	funct_ref = engine;
129	return 1;	46	return 1;
130	}	47	}
131	#endif	48	#endif
132		49
133	void RAND_cleanup(void)	50	void
134	{	51	RAND_cleanup(void)
135	const RAND_METHOD *meth = RAND_get_rand_method();	52	{
136	if (meth && meth->cleanup)	53
137	meth->cleanup();	54	}
138	RAND_set_rand_method(NULL);	55
139	}	56	void
		57	RAND_seed(const void *buf, int num)
		58	{
		59
		60	}
140		61
141	void RAND_seed(const void *buf, int num)	62	void
142	{	63	RAND_add(const void *buf, int num, double entropy)
143	const RAND_METHOD *meth = RAND_get_rand_method();	64	{
144	if (meth && meth->seed)
145	meth->seed(buf,num);
146	}
147		65
148	void RAND_add(const void *buf, int num, double entropy)	66	}
149	{
150	const RAND_METHOD *meth = RAND_get_rand_method();
151	if (meth && meth->add)
152	meth->add(buf,num,entropy);
153	}
154		67
155	int RAND_bytes(unsigned char *buf, int num)	68	int
156	{	69	RAND_status(void)
157	const RAND_METHOD *meth = RAND_get_rand_method();	70	{
158	if (meth && meth->bytes)	71	return 1;
159	return meth->bytes(buf,num);	72	}
160	return(-1);
161	}
162		73
163	int RAND_pseudo_bytes(unsigned char *buf, int num)	74	int
164	{	75	RAND_poll(void)
165	const RAND_METHOD *meth = RAND_get_rand_method();	76	{
166	if (meth && meth->pseudorand)	77	return 1;
167	return meth->pseudorand(buf,num);	78	}
168	return(-1);
169	}
170		79
171	int RAND_status(void)	80	/*
172	{	81	* Hurray. You've made it to the good parts.
173	const RAND_METHOD *meth = RAND_get_rand_method();	82	*/
174	if (meth && meth->status)	83	int
175	return meth->status();	84	RAND_bytes(unsigned char *buf, int num)
176	return 0;	85	{
177	}	86	if (num > 0)
		87	arc4random_buf(buf, num);
		88	return 1;
		89	}
		90
		91	int
		92	RAND_pseudo_bytes(unsigned char *buf, int num)
		93	{
		94	if (num > 0)
		95	arc4random_buf(buf, num);
		96	return 1;
		97	}