2000-01-22 01:50:27 +08:00
|
|
|
=pod
|
|
|
|
|
|
|
|
=head1 NAME
|
|
|
|
|
2016-05-17 03:30:41 +08:00
|
|
|
RAND_add, RAND_seed, RAND_status, RAND_event, RAND_screen - add
|
2017-06-27 00:02:57 +08:00
|
|
|
randomness to the PRNG
|
2000-01-22 01:50:27 +08:00
|
|
|
|
|
|
|
=head1 SYNOPSIS
|
|
|
|
|
|
|
|
#include <openssl/rand.h>
|
|
|
|
|
|
|
|
void RAND_seed(const void *buf, int num);
|
|
|
|
|
2017-06-27 00:02:57 +08:00
|
|
|
void RAND_add(const void *buf, int num, double randomness);
|
2000-01-22 01:50:27 +08:00
|
|
|
|
2000-02-24 10:51:47 +08:00
|
|
|
int RAND_status(void);
|
|
|
|
|
2016-05-17 03:46:48 +08:00
|
|
|
#if OPENSSL_API_COMPAT < 0x10100000L
|
2016-05-17 03:30:41 +08:00
|
|
|
int RAND_event(UINT iMsg, WPARAM wParam, LPARAM lParam);
|
|
|
|
void RAND_screen(void);
|
2016-05-17 03:46:48 +08:00
|
|
|
#endif
|
2016-05-17 03:30:41 +08:00
|
|
|
|
2000-01-22 01:50:27 +08:00
|
|
|
=head1 DESCRIPTION
|
|
|
|
|
|
|
|
RAND_add() mixes the B<num> bytes at B<buf> into the PRNG state. Thus,
|
|
|
|
if the data at B<buf> are unpredictable to an adversary, this
|
|
|
|
increases the uncertainty about the state and makes the PRNG output
|
|
|
|
less predictable. Suitable input comes from user interaction (random
|
|
|
|
key presses, mouse movements) and certain hardware events. The
|
2017-06-27 00:02:57 +08:00
|
|
|
B<randomness> argument is an estimate of how much randomness is contained in
|
|
|
|
B<buf>, in bytes, and should be a number between zero and B<num>.
|
|
|
|
Details about sources of randomness and how to estimate their randomness
|
|
|
|
can be found in the literature; for example IETF RFC 4086.
|
2000-01-22 01:50:27 +08:00
|
|
|
|
|
|
|
RAND_add() may be called with sensitive data such as user entered
|
|
|
|
passwords. The seed values cannot be recovered from the PRNG output.
|
|
|
|
|
|
|
|
OpenSSL makes sure that the PRNG state is unique for each thread. On
|
2000-01-22 03:54:22 +08:00
|
|
|
systems that provide C</dev/urandom>, the randomness device is used
|
2000-01-22 01:50:27 +08:00
|
|
|
to seed the PRNG transparently. However, on all other systems, the
|
2000-02-25 23:43:33 +08:00
|
|
|
application is responsible for seeding the PRNG by calling RAND_add(),
|
2015-08-18 03:21:33 +08:00
|
|
|
L<RAND_egd(3)>
|
|
|
|
or L<RAND_load_file(3)>.
|
2000-01-22 01:50:27 +08:00
|
|
|
|
2017-06-27 00:02:57 +08:00
|
|
|
RAND_seed() is equivalent to RAND_add() with B<randomness> set to B<num>.
|
2000-01-22 01:50:27 +08:00
|
|
|
|
2016-05-17 03:46:48 +08:00
|
|
|
RAND_event() and RAND_screen() are deprecated and should not be called.
|
|
|
|
|
2000-01-22 01:50:27 +08:00
|
|
|
=head1 RETURN VALUES
|
|
|
|
|
2016-01-13 13:27:27 +08:00
|
|
|
RAND_status() returns 1 if the PRNG has been seeded
|
2000-03-22 23:30:03 +08:00
|
|
|
with enough data, 0 otherwise.
|
2000-02-24 10:51:47 +08:00
|
|
|
|
2016-05-17 03:41:02 +08:00
|
|
|
RAND_event() calls RAND_poll() and returns RAND_status().
|
2016-05-17 03:30:41 +08:00
|
|
|
|
|
|
|
RAND_screen calls RAND_poll().
|
|
|
|
|
2000-02-24 10:51:47 +08:00
|
|
|
The other functions do not return values.
|
2000-01-22 01:50:27 +08:00
|
|
|
|
2016-05-17 03:46:48 +08:00
|
|
|
=head1 HISTORY
|
|
|
|
|
|
|
|
RAND_event() and RAND_screen() are deprecated since OpenSSL
|
2016-05-17 03:51:40 +08:00
|
|
|
1.1.0. Use the functions described above instead.
|
2016-05-17 03:46:48 +08:00
|
|
|
|
2000-01-22 01:50:27 +08:00
|
|
|
=head1 SEE ALSO
|
|
|
|
|
2016-11-11 16:33:09 +08:00
|
|
|
L<RAND_bytes(3)>, L<RAND_egd(3)>,
|
2015-08-18 03:21:33 +08:00
|
|
|
L<RAND_load_file(3)>, L<RAND_cleanup(3)>
|
2000-01-22 01:50:27 +08:00
|
|
|
|
2016-05-18 23:44:05 +08:00
|
|
|
=head1 COPYRIGHT
|
|
|
|
|
|
|
|
Copyright 2000-2016 The OpenSSL Project Authors. All Rights Reserved.
|
|
|
|
|
|
|
|
Licensed under the OpenSSL license (the "License"). You may not use
|
|
|
|
this file except in compliance with the License. You can obtain a copy
|
|
|
|
in the file LICENSE in the source distribution or at
|
|
|
|
L<https://www.openssl.org/source/license.html>.
|
|
|
|
|
|
|
|
=cut
|