openssl/crypto/info.c

/*
 * Copyright 2019 The OpenSSL Project Authors. All Rights Reserved.
 *
 * Licensed under the Apache License 2.0 (the "License").  You may not use
 * this file except in compliance with the License.  You can obtain a copy
 * in the file LICENSE in the source distribution or at
 * https://www.openssl.org/source/license.html
 */

#include <openssl/crypto.h>
#include "crypto/rand.h"
#include "crypto/dso_conf.h"
#include "internal/thread_once.h"
#include "internal/cryptlib.h"
#include "e_os.h"
#include "buildinf.h"

#if defined(__arm__) || defined(__arm) || defined(__aarch64__)
# include "arm_arch.h"
#endif

/* extern declaration to avoid warning */
extern char ossl_cpu_info_str[];

static char *seed_sources = NULL;

char ossl_cpu_info_str[128] = "";
#define CPUINFO_PREFIX "CPUINFO: "

static CRYPTO_ONCE init_info = CRYPTO_ONCE_STATIC_INIT;

DEFINE_RUN_ONCE_STATIC(init_info_strings)
{
#if defined(OPENSSL_CPUID_OBJ)
# if defined(__i386)   || defined(__i386__)   || defined(_M_IX86) || \
     defined(__x86_64) || defined(__x86_64__) || \
     defined(_M_AMD64) || defined(_M_X64)
    const char *env;

    BIO_snprintf(ossl_cpu_info_str, sizeof(ossl_cpu_info_str),
                 CPUINFO_PREFIX "OPENSSL_ia32cap=0x%llx:0x%llx",
                 (long long)OPENSSL_ia32cap_P[0] |
                 (long long)OPENSSL_ia32cap_P[1] << 32,
                 (long long)OPENSSL_ia32cap_P[2] |
                 (long long)OPENSSL_ia32cap_P[3] << 32);
    if ((env = getenv("OPENSSL_ia32cap")) != NULL)
        BIO_snprintf(ossl_cpu_info_str + strlen(ossl_cpu_info_str),
                     sizeof(ossl_cpu_info_str) - strlen(ossl_cpu_info_str),
                     " env:%s", env);
# elif defined(__arm__) || defined(__arm) || defined(__aarch64__)
    const char *env;

    BIO_snprintf(ossl_cpu_info_str, sizeof(ossl_cpu_info_str),
                 CPUINFO_PREFIX "OPENSSL_armcap=0x%x", OPENSSL_armcap_P);
    if ((env = getenv("OPENSSL_armcap")) != NULL)
        BIO_snprintf(ossl_cpu_info_str + strlen(ossl_cpu_info_str),
                     sizeof(ossl_cpu_info_str) - strlen(ossl_cpu_info_str),
                     " env:%s", env);
# endif
#endif

    {
        static char seeds[512] = "";

#define add_seeds_string(str)                                           \
        do {                                                            \
            if (seeds[0] != '\0')                                       \
                OPENSSL_strlcat(seeds, " ", sizeof(seeds));             \
            OPENSSL_strlcat(seeds, str, sizeof(seeds));                 \
        } while (0)
#define add_seeds_stringlist(label, strlist)                            \
        do {                                                            \
            add_seeds_string(label "(");                                \
            {                                                           \
                const char *dev[] = strlist;                            \
                int first = 1;                                          \
                                                                        \
                for (; *dev != NULL; dev++) {                           \
                    if (!first)                                         \
                        OPENSSL_strlcat(seeds, " ", sizeof(seeds));     \
                    first = 0;                                          \
                    OPENSSL_strlcat(seeds, *dev, sizeof(seeds));        \
                }                                                       \
            }                                                           \
            OPENSSL_strlcat(seeds, ")", sizeof(seeds));                 \
        } while (0)

#ifdef OPENSSL_RAND_SEED_NONE
        add_seeds_string("none");
#endif
#ifdef OPENSSL_RAND_SEED_RTDSC
        add_seeds_string("stdsc");
#endif
#ifdef OPENSSL_RAND_SEED_RDCPU
        add_seeds_string("rdrand ( rdseed rdrand )");
#endif
#ifdef OPENSSL_RAND_SEED_LIBRANDOM
        add_seeds_string("C-library-random");
#endif
#ifdef OPENSSL_RAND_SEED_GETRANDOM
        add_seeds_string("getrandom-syscall");
#endif
#ifdef OPENSSL_RAND_SEED_DEVRANDOM
        add_seeds_stringlist("random-device", { DEVRANDOM, NULL });
#endif
#ifdef OPENSSL_RAND_SEED_EGD
        add_seeds_stringlist("EGD", { DEVRANDOM_EGD, NULL });
#endif
#ifdef OPENSSL_RAND_SEED_OS
        add_seeds_string("os-specific");
#endif
        seed_sources = seeds;
    }
    return 1;
}

const char *OPENSSL_info(int t)
{
    /*
     * We don't care about the result.  Worst case scenario, the strings
     * won't be initialised, i.e. remain NULL, which means that the info
     * isn't available anyway...
     */
    (void)RUN_ONCE(&init_info, init_info_strings);

    switch (t) {
    case OPENSSL_INFO_CONFIG_DIR:
        return OPENSSLDIR;
    case OPENSSL_INFO_ENGINES_DIR:
        return ENGINESDIR;
    case OPENSSL_INFO_MODULES_DIR:
        return MODULESDIR;
    case OPENSSL_INFO_DSO_EXTENSION:
        return DSO_EXTENSION;
    case OPENSSL_INFO_DIR_FILENAME_SEPARATOR:
#if defined(_WIN32)
        return "\\";
#elif defined(__VMS)
        return "";
#else  /* Assume POSIX */
        return "/";
#endif
    case OPENSSL_INFO_LIST_SEPARATOR:
        {
            static const char list_sep[] = { LIST_SEPARATOR_CHAR, '\0' };
            return list_sep;
        }
    case OPENSSL_INFO_SEED_SOURCE:
        return seed_sources;
    case OPENSSL_INFO_CPU_SETTINGS:
        /*
         * If successfully initialized, ossl_cpu_info_str will start
         * with CPUINFO_PREFIX, if failed it will be an empty string.
         * Strip away the CPUINFO_PREFIX which we don't need here.
         */
        if (ossl_cpu_info_str[0] != '\0')
            return ossl_cpu_info_str + strlen(CPUINFO_PREFIX);
        break;
    default:
        break;
    }
    /* Not an error */
    return NULL;
}
Add a way for the application to get OpenSSL configuration data OpenSSL_version(OPENSSL_DIR) gives you a nicely formatted string for display, but if all you really want is the directory itself, you were forced to parsed the string. This introduces a new function to get diverse configuration data from the library, OPENSSL_info(). This works the same way as OpenSSL_version(), but has its own series of types, currently including: OPENSSL_INFO_CONFIG_DIR returns OPENSSLDIR OPENSSL_INFO_ENGINES_DIR returns ENGINESDIR OPENSSL_INFO_MODULES_DIR returns MODULESDIR OPENSSL_INFO_DSO_EXTENSION returns DSO_EXTENSION OPENSSL_INFO_DIR_FILENAME_SEPARATOR returns directory/filename separator OPENSSL_INFO_LIST_SEPARATOR returns list separator For scripting purposes, this also adds the command 'openssl info'. Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from https://github.com/openssl/openssl/pull/8709) 2019-04-09 20:39:54 +08:00			`/*`
			`* Copyright 2019 The OpenSSL Project Authors. All Rights Reserved.`
			`*`
			`* Licensed under the Apache License 2.0 (the "License"). You may not use`
			`* this file except in compliance with the License. You can obtain a copy`
			`* in the file LICENSE in the source distribution or at`
			`* https://www.openssl.org/source/license.html`
			`*/`

			`#include <openssl/crypto.h>`
Move random-related defines to "crypto/rand.h" This fixes commit 01036e2afbe116d608be048ed15930fc885ab2a8, which moved the DEVRANDOM and DEVRANDOM_EGD defines into rand_unix.c. That change introduced the regression that the compiler complains about missing declarations in crypto/info.c when OpenSSL is configured using `--with-rand-seed=devrandom` (resp. `--with-rand-seed=egd`) Fixes #10759 Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org> (Merged from https://github.com/openssl/openssl/pull/10762) 2020-01-06 08:50:43 +08:00			`#include "crypto/rand.h"`
Reorganize private crypto header files Currently, there are two different directories which contain internal header files of libcrypto which are meant to be shared internally: While header files in 'include/internal' are intended to be shared between libcrypto and libssl, the files in 'crypto/include/internal' are intended to be shared inside libcrypto only. To make things complicated, the include search path is set up in such a way that the directive #include "internal/file.h" could refer to a file in either of these two directoroes. This makes it necessary in some cases to add a '_int.h' suffix to some files to resolve this ambiguity: #include "internal/file.h" # located in 'include/internal' #include "internal/file_int.h" # located in 'crypto/include/internal' This commit moves the private crypto headers from 'crypto/include/internal' to 'include/crypto' As a result, the include directives become unambiguous #include "internal/file.h" # located in 'include/internal' #include "crypto/file.h" # located in 'include/crypto' hence the superfluous '_int.h' suffixes can be stripped. The files 'store_int.h' and 'store.h' need to be treated specially; they are joined into a single file. Reviewed-by: Richard Levitte <levitte@openssl.org> (Merged from https://github.com/openssl/openssl/pull/9333) 2019-09-28 06:45:33 +08:00			`#include "crypto/dso_conf.h"`
Add CPU info to the speed command summary Reviewed-by: Richard Levitte <levitte@openssl.org> (Merged from https://github.com/openssl/openssl/pull/9669) 2019-08-22 20:28:23 +08:00			`#include "internal/thread_once.h"`
			`#include "internal/cryptlib.h"`
Add a way for the application to get OpenSSL configuration data OpenSSL_version(OPENSSL_DIR) gives you a nicely formatted string for display, but if all you really want is the directory itself, you were forced to parsed the string. This introduces a new function to get diverse configuration data from the library, OPENSSL_info(). This works the same way as OpenSSL_version(), but has its own series of types, currently including: OPENSSL_INFO_CONFIG_DIR returns OPENSSLDIR OPENSSL_INFO_ENGINES_DIR returns ENGINESDIR OPENSSL_INFO_MODULES_DIR returns MODULESDIR OPENSSL_INFO_DSO_EXTENSION returns DSO_EXTENSION OPENSSL_INFO_DIR_FILENAME_SEPARATOR returns directory/filename separator OPENSSL_INFO_LIST_SEPARATOR returns list separator For scripting purposes, this also adds the command 'openssl info'. Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from https://github.com/openssl/openssl/pull/8709) 2019-04-09 20:39:54 +08:00			`#include "e_os.h"`
OPENSSL_info(): add the item OPENSSL_INFO_SEED_SOURCE and use it 'openssl version -r' prints the seed source based on compiler macros. This does not necessarily reflect the library's idea of what seed sources to use, so we reimplement the list of seed sources as a OPENSSL_info() item and display that instead. Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from https://github.com/openssl/openssl/pull/9689) 2019-08-24 18:40:10 +08:00			`#include "buildinf.h"`
Add CPU info to the speed command summary Reviewed-by: Richard Levitte <levitte@openssl.org> (Merged from https://github.com/openssl/openssl/pull/9669) 2019-08-22 20:28:23 +08:00
			`#if defined(__arm__) \|\| defined(__arm) \|\| defined(__aarch64__)`
			`# include "arm_arch.h"`
			`#endif`

			`/* extern declaration to avoid warning */`
			`extern char ossl_cpu_info_str[];`
OPENSSL_info(): add the item OPENSSL_INFO_SEED_SOURCE and use it 'openssl version -r' prints the seed source based on compiler macros. This does not necessarily reflect the library's idea of what seed sources to use, so we reimplement the list of seed sources as a OPENSSL_info() item and display that instead. Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from https://github.com/openssl/openssl/pull/9689) 2019-08-24 18:40:10 +08:00
			`static char *seed_sources = NULL;`
Add CPU info to the speed command summary Reviewed-by: Richard Levitte <levitte@openssl.org> (Merged from https://github.com/openssl/openssl/pull/9669) 2019-08-22 20:28:23 +08:00
			`char ossl_cpu_info_str[128] = "";`
			`#define CPUINFO_PREFIX "CPUINFO: "`

OPENSSL_info(): add the item OPENSSL_INFO_SEED_SOURCE and use it 'openssl version -r' prints the seed source based on compiler macros. This does not necessarily reflect the library's idea of what seed sources to use, so we reimplement the list of seed sources as a OPENSSL_info() item and display that instead. Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from https://github.com/openssl/openssl/pull/9689) 2019-08-24 18:40:10 +08:00			`static CRYPTO_ONCE init_info = CRYPTO_ONCE_STATIC_INIT;`

			`DEFINE_RUN_ONCE_STATIC(init_info_strings)`
			`{`
Add CPU info to the speed command summary Reviewed-by: Richard Levitte <levitte@openssl.org> (Merged from https://github.com/openssl/openssl/pull/9669) 2019-08-22 20:28:23 +08:00			`#if defined(OPENSSL_CPUID_OBJ)`
			`# if defined(__i386) \|\| defined(__i386__) \|\| defined(_M_IX86) \|\| \`
			`defined(__x86_64) \|\| defined(__x86_64__) \|\| \`
			`defined(_M_AMD64) \|\| defined(_M_X64)`
			`const char *env;`

			`BIO_snprintf(ossl_cpu_info_str, sizeof(ossl_cpu_info_str),`
			`CPUINFO_PREFIX "OPENSSL_ia32cap=0x%llx:0x%llx",`
			`(long long)OPENSSL_ia32cap_P[0] \|`
			`(long long)OPENSSL_ia32cap_P[1] << 32,`
			`(long long)OPENSSL_ia32cap_P[2] \|`
			`(long long)OPENSSL_ia32cap_P[3] << 32);`
			`if ((env = getenv("OPENSSL_ia32cap")) != NULL)`
			`BIO_snprintf(ossl_cpu_info_str + strlen(ossl_cpu_info_str),`
			`sizeof(ossl_cpu_info_str) - strlen(ossl_cpu_info_str),`
			`" env:%s", env);`
			`# elif defined(__arm__) \|\| defined(__arm) \|\| defined(__aarch64__)`
			`const char *env;`

			`BIO_snprintf(ossl_cpu_info_str, sizeof(ossl_cpu_info_str),`
			`CPUINFO_PREFIX "OPENSSL_armcap=0x%x", OPENSSL_armcap_P);`
			`if ((env = getenv("OPENSSL_armcap")) != NULL)`
			`BIO_snprintf(ossl_cpu_info_str + strlen(ossl_cpu_info_str),`
			`sizeof(ossl_cpu_info_str) - strlen(ossl_cpu_info_str),`
			`" env:%s", env);`
			`# endif`
			`#endif`

OPENSSL_info(): add the item OPENSSL_INFO_SEED_SOURCE and use it 'openssl version -r' prints the seed source based on compiler macros. This does not necessarily reflect the library's idea of what seed sources to use, so we reimplement the list of seed sources as a OPENSSL_info() item and display that instead. Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from https://github.com/openssl/openssl/pull/9689) 2019-08-24 18:40:10 +08:00			`{`
			`static char seeds[512] = "";`

			`#define add_seeds_string(str) \`
			`do { \`
			`if (seeds[0] != '\0') \`
			`OPENSSL_strlcat(seeds, " ", sizeof(seeds)); \`
			`OPENSSL_strlcat(seeds, str, sizeof(seeds)); \`
			`} while (0)`
			`#define add_seeds_stringlist(label, strlist) \`
			`do { \`
			`add_seeds_string(label "("); \`
			`{ \`
			`const char *dev[] = strlist; \`
			`int first = 1; \`
			`\`
			`for (; *dev != NULL; dev++) { \`
			`if (!first) \`
			`OPENSSL_strlcat(seeds, " ", sizeof(seeds)); \`
			`first = 0; \`
			`OPENSSL_strlcat(seeds, *dev, sizeof(seeds)); \`
			`} \`
			`} \`
			`OPENSSL_strlcat(seeds, ")", sizeof(seeds)); \`
			`} while (0)`

			`#ifdef OPENSSL_RAND_SEED_NONE`
			`add_seeds_string("none");`
			`#endif`
			`#ifdef OPENSSL_RAND_SEED_RTDSC`
			`add_seeds_string("stdsc");`
			`#endif`
			`#ifdef OPENSSL_RAND_SEED_RDCPU`
			`add_seeds_string("rdrand ( rdseed rdrand )");`
			`#endif`
			`#ifdef OPENSSL_RAND_SEED_LIBRANDOM`
			`add_seeds_string("C-library-random");`
			`#endif`
			`#ifdef OPENSSL_RAND_SEED_GETRANDOM`
			`add_seeds_string("getrandom-syscall");`
			`#endif`
			`#ifdef OPENSSL_RAND_SEED_DEVRANDOM`
			`add_seeds_stringlist("random-device", { DEVRANDOM, NULL });`
			`#endif`
			`#ifdef OPENSSL_RAND_SEED_EGD`
			`add_seeds_stringlist("EGD", { DEVRANDOM_EGD, NULL });`
			`#endif`
			`#ifdef OPENSSL_RAND_SEED_OS`
			`add_seeds_string("os-specific");`
			`#endif`
			`seed_sources = seeds;`
			`}`
			`return 1;`
			`}`
Add a way for the application to get OpenSSL configuration data OpenSSL_version(OPENSSL_DIR) gives you a nicely formatted string for display, but if all you really want is the directory itself, you were forced to parsed the string. This introduces a new function to get diverse configuration data from the library, OPENSSL_info(). This works the same way as OpenSSL_version(), but has its own series of types, currently including: OPENSSL_INFO_CONFIG_DIR returns OPENSSLDIR OPENSSL_INFO_ENGINES_DIR returns ENGINESDIR OPENSSL_INFO_MODULES_DIR returns MODULESDIR OPENSSL_INFO_DSO_EXTENSION returns DSO_EXTENSION OPENSSL_INFO_DIR_FILENAME_SEPARATOR returns directory/filename separator OPENSSL_INFO_LIST_SEPARATOR returns list separator For scripting purposes, this also adds the command 'openssl info'. Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from https://github.com/openssl/openssl/pull/8709) 2019-04-09 20:39:54 +08:00
			`const char *OPENSSL_info(int t)`
			`{`
OPENSSL_info(): add the item OPENSSL_INFO_SEED_SOURCE and use it 'openssl version -r' prints the seed source based on compiler macros. This does not necessarily reflect the library's idea of what seed sources to use, so we reimplement the list of seed sources as a OPENSSL_info() item and display that instead. Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from https://github.com/openssl/openssl/pull/9689) 2019-08-24 18:40:10 +08:00			`/*`
			`* We don't care about the result. Worst case scenario, the strings`
			`* won't be initialised, i.e. remain NULL, which means that the info`
			`* isn't available anyway...`
			`*/`
			`(void)RUN_ONCE(&init_info, init_info_strings);`

Add a way for the application to get OpenSSL configuration data OpenSSL_version(OPENSSL_DIR) gives you a nicely formatted string for display, but if all you really want is the directory itself, you were forced to parsed the string. This introduces a new function to get diverse configuration data from the library, OPENSSL_info(). This works the same way as OpenSSL_version(), but has its own series of types, currently including: OPENSSL_INFO_CONFIG_DIR returns OPENSSLDIR OPENSSL_INFO_ENGINES_DIR returns ENGINESDIR OPENSSL_INFO_MODULES_DIR returns MODULESDIR OPENSSL_INFO_DSO_EXTENSION returns DSO_EXTENSION OPENSSL_INFO_DIR_FILENAME_SEPARATOR returns directory/filename separator OPENSSL_INFO_LIST_SEPARATOR returns list separator For scripting purposes, this also adds the command 'openssl info'. Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from https://github.com/openssl/openssl/pull/8709) 2019-04-09 20:39:54 +08:00			`switch (t) {`
			`case OPENSSL_INFO_CONFIG_DIR:`
			`return OPENSSLDIR;`
			`case OPENSSL_INFO_ENGINES_DIR:`
			`return ENGINESDIR;`
			`case OPENSSL_INFO_MODULES_DIR:`
			`return MODULESDIR;`
			`case OPENSSL_INFO_DSO_EXTENSION:`
			`return DSO_EXTENSION;`
			`case OPENSSL_INFO_DIR_FILENAME_SEPARATOR:`
			`#if defined(_WIN32)`
			`return "\\";`
			`#elif defined(__VMS)`
			`return "";`
			`#else /* Assume POSIX */`
			`return "/";`
			`#endif`
			`case OPENSSL_INFO_LIST_SEPARATOR:`
			`{`
			`static const char list_sep[] = { LIST_SEPARATOR_CHAR, '\0' };`
			`return list_sep;`
			`}`
OPENSSL_info(): add the item OPENSSL_INFO_SEED_SOURCE and use it 'openssl version -r' prints the seed source based on compiler macros. This does not necessarily reflect the library's idea of what seed sources to use, so we reimplement the list of seed sources as a OPENSSL_info() item and display that instead. Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from https://github.com/openssl/openssl/pull/9689) 2019-08-24 18:40:10 +08:00			`case OPENSSL_INFO_SEED_SOURCE:`
			`return seed_sources;`
Add CPU info to the speed command summary Reviewed-by: Richard Levitte <levitte@openssl.org> (Merged from https://github.com/openssl/openssl/pull/9669) 2019-08-22 20:28:23 +08:00			`case OPENSSL_INFO_CPU_SETTINGS:`
			`/*`
			`* If successfully initialized, ossl_cpu_info_str will start`
			`* with CPUINFO_PREFIX, if failed it will be an empty string.`
			`* Strip away the CPUINFO_PREFIX which we don't need here.`
			`*/`
			`if (ossl_cpu_info_str[0] != '\0')`
			`return ossl_cpu_info_str + strlen(CPUINFO_PREFIX);`
			`break;`
Add a way for the application to get OpenSSL configuration data OpenSSL_version(OPENSSL_DIR) gives you a nicely formatted string for display, but if all you really want is the directory itself, you were forced to parsed the string. This introduces a new function to get diverse configuration data from the library, OPENSSL_info(). This works the same way as OpenSSL_version(), but has its own series of types, currently including: OPENSSL_INFO_CONFIG_DIR returns OPENSSLDIR OPENSSL_INFO_ENGINES_DIR returns ENGINESDIR OPENSSL_INFO_MODULES_DIR returns MODULESDIR OPENSSL_INFO_DSO_EXTENSION returns DSO_EXTENSION OPENSSL_INFO_DIR_FILENAME_SEPARATOR returns directory/filename separator OPENSSL_INFO_LIST_SEPARATOR returns list separator For scripting purposes, this also adds the command 'openssl info'. Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from https://github.com/openssl/openssl/pull/8709) 2019-04-09 20:39:54 +08:00			`default:`
			`break;`
			`}`
			`/* Not an error */`
			`return NULL;`
			`}`