2015-01-22 11:40:55 +08:00
|
|
|
/*
|
2018-03-20 21:00:17 +08:00
|
|
|
* Copyright 2001-2018 The OpenSSL Project Authors. All Rights Reserved.
|
2001-01-08 18:59:26 +08:00
|
|
|
*
|
2016-05-18 02:52:22 +08:00
|
|
|
* Licensed under the OpenSSL license (the "License"). You may not use
|
|
|
|
* this file except in compliance with the License. You can obtain a copy
|
|
|
|
* in the file LICENSE in the source distribution or at
|
|
|
|
* https://www.openssl.org/source/license.html
|
2001-01-08 18:59:26 +08:00
|
|
|
*/
|
|
|
|
|
2017-06-22 21:21:43 +08:00
|
|
|
#include "e_os.h"
|
2001-01-08 18:59:26 +08:00
|
|
|
|
2001-02-20 16:13:47 +08:00
|
|
|
#if defined(OPENSSL_SYS_VMS)
|
2018-04-10 16:22:52 +08:00
|
|
|
# include <unistd.h>
|
2018-04-03 22:33:55 +08:00
|
|
|
# include "internal/cryptlib.h"
|
2017-06-22 21:21:43 +08:00
|
|
|
# include <openssl/rand.h>
|
2018-03-20 15:31:10 +08:00
|
|
|
# include "internal/rand_int.h"
|
2017-06-22 21:21:43 +08:00
|
|
|
# include "rand_lcl.h"
|
2015-01-22 11:40:55 +08:00
|
|
|
# include <descrip.h>
|
|
|
|
# include <jpidef.h>
|
|
|
|
# include <ssdef.h>
|
|
|
|
# include <starlet.h>
|
2016-08-04 03:45:06 +08:00
|
|
|
# include <efndef>
|
2015-01-22 11:40:55 +08:00
|
|
|
# ifdef __DECC
|
|
|
|
# pragma message disable DOLLARID
|
|
|
|
# endif
|
2001-01-08 18:59:26 +08:00
|
|
|
|
2017-07-18 21:39:21 +08:00
|
|
|
# ifndef OPENSSL_RAND_SEED_OS
|
|
|
|
# error "Unsupported seeding method configured; must be os"
|
|
|
|
# endif
|
|
|
|
|
2015-01-22 11:40:55 +08:00
|
|
|
/*
|
|
|
|
* Use 32-bit pointers almost everywhere. Define the type to which to cast a
|
|
|
|
* pointer passed to an external function.
|
2011-03-19 18:58:14 +08:00
|
|
|
*/
|
2015-01-22 11:40:55 +08:00
|
|
|
# if __INITIAL_POINTER_SIZE == 64
|
|
|
|
# define PTR_T __void_ptr64
|
|
|
|
# pragma pointer_size save
|
|
|
|
# pragma pointer_size 32
|
2017-06-22 21:21:43 +08:00
|
|
|
# else
|
2015-01-22 11:40:55 +08:00
|
|
|
# define PTR_T void *
|
2017-06-22 21:21:43 +08:00
|
|
|
# endif
|
2015-01-22 11:40:55 +08:00
|
|
|
|
|
|
|
static struct items_data_st {
|
2016-08-04 03:45:06 +08:00
|
|
|
short length, code; /* length is number of bytes */
|
2015-01-22 11:40:55 +08:00
|
|
|
} items_data[] = {
|
2016-08-04 03:45:06 +08:00
|
|
|
{4, JPI$_BUFIO},
|
|
|
|
{4, JPI$_CPUTIM},
|
|
|
|
{4, JPI$_DIRIO},
|
|
|
|
{4, JPI$_IMAGECOUNT},
|
|
|
|
{8, JPI$_LAST_LOGIN_I},
|
|
|
|
{8, JPI$_LOGINTIM},
|
|
|
|
{4, JPI$_PAGEFLTS},
|
|
|
|
{4, JPI$_PID},
|
|
|
|
{4, JPI$_PPGCNT},
|
|
|
|
{4, JPI$_WSPEAK},
|
|
|
|
{4, JPI$_FINALEXC},
|
2017-06-22 21:21:43 +08:00
|
|
|
{0, 0}
|
2015-01-22 11:40:55 +08:00
|
|
|
};
|
2011-03-19 18:58:14 +08:00
|
|
|
|
2018-04-03 22:33:55 +08:00
|
|
|
/*
|
|
|
|
* We assume there we get about 4 bits of entropy per byte from the items
|
|
|
|
* above, with a bit of scrambling added rand_pool_acquire_entropy()
|
|
|
|
*/
|
|
|
|
#define ENTROPY_BITS_PER_BYTE 4
|
|
|
|
|
2018-03-06 06:45:44 +08:00
|
|
|
size_t rand_pool_acquire_entropy(RAND_POOL *pool)
|
2015-01-22 11:40:55 +08:00
|
|
|
{
|
2016-08-04 03:45:06 +08:00
|
|
|
/* determine the number of items in the JPI array */
|
|
|
|
struct items_data_st item_entry;
|
2018-04-03 22:33:55 +08:00
|
|
|
size_t item_entry_count = OSSL_NELEM(items_data);
|
|
|
|
/* Create the 32-bit JPI itemlist array to hold item_data content */
|
2015-01-22 11:40:55 +08:00
|
|
|
struct {
|
2018-04-03 22:33:55 +08:00
|
|
|
uint16_t length, code;
|
|
|
|
uint32_t *buffer;
|
|
|
|
uint32_t *retlen;
|
2017-06-22 21:21:43 +08:00
|
|
|
} item[item_entry_count], *pitem;
|
2015-01-22 11:40:55 +08:00
|
|
|
struct items_data_st *pitems_data;
|
2018-04-03 22:33:55 +08:00
|
|
|
/* 8 bytes (two longs) per entry max */
|
|
|
|
uint32_t data_buffer[(item_entry_count * 2) + 4];
|
|
|
|
uint32_t iosb[2];
|
|
|
|
uint32_t sys_time[2];
|
|
|
|
uint32_t *ptr;
|
|
|
|
size_t i, j ;
|
|
|
|
size_t tmp_length = 0;
|
|
|
|
size_t total_length = 0;
|
|
|
|
size_t bytes_needed = rand_pool_bytes_needed(pool, ENTROPY_BITS_PER_BYTE);
|
|
|
|
size_t bytes_remaining = rand_pool_bytes_remaining(pool);
|
2001-05-13 18:34:18 +08:00
|
|
|
|
2016-08-04 03:45:06 +08:00
|
|
|
/* Setup itemlist for GETJPI */
|
2017-06-22 21:21:43 +08:00
|
|
|
pitems_data = items_data;
|
|
|
|
for (pitem = item; pitems_data->length != 0; pitem++) {
|
2015-01-22 11:40:55 +08:00
|
|
|
pitem->length = pitems_data->length;
|
2016-08-04 03:45:06 +08:00
|
|
|
pitem->code = pitems_data->code;
|
|
|
|
pitem->buffer = &data_buffer[total_length];
|
2015-01-22 11:40:55 +08:00
|
|
|
pitem->retlen = 0;
|
2016-08-04 03:45:06 +08:00
|
|
|
/* total_length is in longwords */
|
2017-06-22 21:21:43 +08:00
|
|
|
total_length += pitems_data->length / 4;
|
2015-01-22 11:40:55 +08:00
|
|
|
pitems_data++;
|
|
|
|
}
|
|
|
|
pitem->length = pitem->code = 0;
|
2001-05-13 18:34:18 +08:00
|
|
|
|
2016-08-04 03:45:06 +08:00
|
|
|
/* Fill data_buffer with various info bits from this process */
|
2017-06-22 21:21:43 +08:00
|
|
|
if (sys$getjpiw(EFN$C_ENF, NULL, NULL, item, &iosb, 0, 0) != SS$_NORMAL)
|
|
|
|
return 0;
|
2016-08-04 03:45:06 +08:00
|
|
|
|
2017-06-22 21:21:43 +08:00
|
|
|
/* Now twist that data to seed the SSL random number init */
|
|
|
|
for (i = 0; i < total_length; i++) {
|
|
|
|
sys$gettim((struct _generic_64 *)&sys_time[0]);
|
|
|
|
srand(sys_time[0] * data_buffer[0] * data_buffer[1] + i);
|
2016-08-04 03:45:06 +08:00
|
|
|
|
2017-06-22 21:21:43 +08:00
|
|
|
if (i == (total_length - 1)) { /* for JPI$_FINALEXC */
|
|
|
|
ptr = &data_buffer[i];
|
|
|
|
for (j = 0; j < 4; j++) {
|
|
|
|
data_buffer[i + j] = ptr[j];
|
2016-08-04 03:45:06 +08:00
|
|
|
/* OK to use rand() just to scramble the seed */
|
2017-06-22 21:21:43 +08:00
|
|
|
data_buffer[i + j] ^= (sys_time[0] ^ rand());
|
|
|
|
tmp_length++;
|
2016-08-04 03:45:06 +08:00
|
|
|
}
|
2017-06-22 21:21:43 +08:00
|
|
|
} else {
|
|
|
|
/* OK to use rand() just to scramble the seed */
|
|
|
|
data_buffer[i] ^= (sys_time[0] ^ rand());
|
2015-01-22 11:40:55 +08:00
|
|
|
}
|
|
|
|
}
|
2016-08-04 03:45:06 +08:00
|
|
|
|
2017-06-22 21:21:43 +08:00
|
|
|
total_length += (tmp_length - 1);
|
|
|
|
|
2018-04-03 22:33:55 +08:00
|
|
|
/* Change the total length to number of bytes */
|
|
|
|
total_length *= 4;
|
|
|
|
|
2017-09-01 05:16:22 +08:00
|
|
|
/*
|
2018-04-03 22:33:55 +08:00
|
|
|
* If we can't feed the requirements from the caller, we're in deep trouble.
|
2017-09-01 05:16:22 +08:00
|
|
|
*/
|
2018-04-03 22:33:55 +08:00
|
|
|
if (!ossl_assert(total_length >= bytes_needed)) {
|
|
|
|
char neededstr[20];
|
|
|
|
char availablestr[20];
|
|
|
|
|
|
|
|
BIO_snprintf(neededstr, sizeof(neededstr), "%zu", bytes_needed);
|
|
|
|
BIO_snprintf(availablestr, sizeof(availablestr), "%zu", total_length);
|
|
|
|
RANDerr(RAND_F_RAND_POOL_ACQUIRE_ENTROPY,
|
|
|
|
RAND_R_RANDOM_POOL_UNDERFLOW);
|
|
|
|
ERR_add_error_data(4, "Needed: ", neededstr, ", Available: ",
|
|
|
|
availablestr);
|
|
|
|
return 0;
|
|
|
|
}
|
|
|
|
|
|
|
|
/*
|
|
|
|
* Try not to overfeed the pool
|
|
|
|
*/
|
|
|
|
if (total_length > bytes_remaining)
|
|
|
|
total_length = bytes_remaining;
|
|
|
|
|
2018-04-05 00:31:50 +08:00
|
|
|
rand_pool_add(pool, (PTR_T)data_buffer, total_length,
|
|
|
|
total_length * ENTROPY_BITS_PER_BYTE);
|
|
|
|
return rand_pool_entropy_available(pool);
|
2001-01-08 18:59:26 +08:00
|
|
|
}
|
|
|
|
|
2018-04-10 16:22:52 +08:00
|
|
|
int rand_pool_add_nonce_data(RAND_POOL *pool)
|
|
|
|
{
|
|
|
|
struct {
|
|
|
|
pid_t pid;
|
|
|
|
CRYPTO_THREAD_ID tid;
|
|
|
|
uint64_t time;
|
|
|
|
} data = { 0 };
|
|
|
|
|
|
|
|
/*
|
|
|
|
* Add process id, thread id, and a high resolution timestamp to
|
|
|
|
* ensure that the nonce is unique whith high probability for
|
|
|
|
* different process instances.
|
|
|
|
*/
|
|
|
|
data.pid = getpid();
|
|
|
|
data.tid = CRYPTO_THREAD_get_current_id();
|
|
|
|
sys$gettim_prec((struct _generic_64 *)&data.time);
|
|
|
|
|
|
|
|
return rand_pool_add(pool, (unsigned char *)&data, sizeof(data), 0);
|
|
|
|
}
|
|
|
|
|
|
|
|
int rand_pool_add_additional_data(RAND_POOL *pool)
|
|
|
|
{
|
|
|
|
struct {
|
|
|
|
CRYPTO_THREAD_ID tid;
|
|
|
|
uint64_t time;
|
|
|
|
} data = { 0 };
|
|
|
|
|
|
|
|
/*
|
|
|
|
* Add some noise from the thread id and a high resolution timer.
|
|
|
|
* The thread id adds a little randomness if the drbg is accessed
|
|
|
|
* concurrently (which is the case for the <master> drbg).
|
|
|
|
*/
|
|
|
|
data.tid = CRYPTO_THREAD_get_current_id();
|
|
|
|
sys$gettim_prec((struct _generic_64 *)&data.time);
|
|
|
|
|
|
|
|
return rand_pool_add(pool, (unsigned char *)&data, sizeof(data), 0);
|
|
|
|
}
|
|
|
|
|
2001-01-08 18:59:26 +08:00
|
|
|
#endif
|