app_rand.c 8.4 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220
  1. /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
  2. * All rights reserved.
  3. *
  4. * This package is an SSL implementation written
  5. * by Eric Young (eay@cryptsoft.com).
  6. * The implementation was written so as to conform with Netscapes SSL.
  7. *
  8. * This library is free for commercial and non-commercial use as long as
  9. * the following conditions are aheared to. The following conditions
  10. * apply to all code found in this distribution, be it the RC4, RSA,
  11. * lhash, DES, etc., code; not just the SSL code. The SSL documentation
  12. * included with this distribution is covered by the same copyright terms
  13. * except that the holder is Tim Hudson (tjh@cryptsoft.com).
  14. *
  15. * Copyright remains Eric Young's, and as such any Copyright notices in
  16. * the code are not to be removed.
  17. * If this package is used in a product, Eric Young should be given attribution
  18. * as the author of the parts of the library used.
  19. * This can be in the form of a textual message at program startup or
  20. * in documentation (online or textual) provided with the package.
  21. *
  22. * Redistribution and use in source and binary forms, with or without
  23. * modification, are permitted provided that the following conditions
  24. * are met:
  25. * 1. Redistributions of source code must retain the copyright
  26. * notice, this list of conditions and the following disclaimer.
  27. * 2. Redistributions in binary form must reproduce the above copyright
  28. * notice, this list of conditions and the following disclaimer in the
  29. * documentation and/or other materials provided with the distribution.
  30. * 3. All advertising materials mentioning features or use of this software
  31. * must display the following acknowledgement:
  32. * "This product includes cryptographic software written by
  33. * Eric Young (eay@cryptsoft.com)"
  34. * The word 'cryptographic' can be left out if the rouines from the library
  35. * being used are not cryptographic related :-).
  36. * 4. If you include any Windows specific code (or a derivative thereof) from
  37. * the apps directory (application code) you must include an acknowledgement:
  38. * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
  39. *
  40. * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
  41. * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
  42. * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
  43. * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
  44. * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
  45. * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
  46. * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
  47. * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
  48. * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
  49. * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
  50. * SUCH DAMAGE.
  51. *
  52. * The licence and distribution terms for any publically available version or
  53. * derivative of this code cannot be changed. i.e. this code cannot simply be
  54. * copied and put under another distribution licence
  55. * [including the GNU Public Licence.]
  56. */
  57. /* ====================================================================
  58. * Copyright (c) 1998-2000 The OpenSSL Project. All rights reserved.
  59. *
  60. * Redistribution and use in source and binary forms, with or without
  61. * modification, are permitted provided that the following conditions
  62. * are met:
  63. *
  64. * 1. Redistributions of source code must retain the above copyright
  65. * notice, this list of conditions and the following disclaimer.
  66. *
  67. * 2. Redistributions in binary form must reproduce the above copyright
  68. * notice, this list of conditions and the following disclaimer in
  69. * the documentation and/or other materials provided with the
  70. * distribution.
  71. *
  72. * 3. All advertising materials mentioning features or use of this
  73. * software must display the following acknowledgment:
  74. * "This product includes software developed by the OpenSSL Project
  75. * for use in the OpenSSL Toolkit. (http://www.openssl.org/)"
  76. *
  77. * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
  78. * endorse or promote products derived from this software without
  79. * prior written permission. For written permission, please contact
  80. * openssl-core@openssl.org.
  81. *
  82. * 5. Products derived from this software may not be called "OpenSSL"
  83. * nor may "OpenSSL" appear in their names without prior written
  84. * permission of the OpenSSL Project.
  85. *
  86. * 6. Redistributions of any form whatsoever must retain the following
  87. * acknowledgment:
  88. * "This product includes software developed by the OpenSSL Project
  89. * for use in the OpenSSL Toolkit (http://www.openssl.org/)"
  90. *
  91. * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
  92. * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
  93. * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
  94. * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
  95. * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
  96. * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
  97. * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
  98. * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
  99. * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
  100. * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
  101. * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
  102. * OF THE POSSIBILITY OF SUCH DAMAGE.
  103. * ====================================================================
  104. *
  105. * This product includes cryptographic software written by Eric Young
  106. * (eay@cryptsoft.com). This product includes software written by Tim
  107. * Hudson (tjh@cryptsoft.com).
  108. *
  109. */
  110. #include "apps.h"
  111. #include <openssl/bio.h>
  112. #include <openssl/rand.h>
  113. static int seeded = 0;
  114. static int egdsocket = 0;
  115. int app_RAND_load_file(const char *file, int dont_warn)
  116. {
  117. int consider_randfile = (file == NULL);
  118. char buffer[200];
  119. #ifdef OPENSSL_SYS_WINDOWS
  120. RAND_screen();
  121. #endif
  122. if (file == NULL)
  123. file = RAND_file_name(buffer, sizeof buffer);
  124. #ifndef OPENSSL_NO_EGD
  125. else if (RAND_egd(file) > 0) {
  126. /*
  127. * we try if the given filename is an EGD socket. if it is, we don't
  128. * write anything back to the file.
  129. */
  130. egdsocket = 1;
  131. return 1;
  132. }
  133. #endif
  134. if (file == NULL || !RAND_load_file(file, -1)) {
  135. if (RAND_status() == 0) {
  136. if (!dont_warn) {
  137. BIO_printf(bio_err, "unable to load 'random state'\n");
  138. BIO_printf(bio_err,
  139. "This means that the random number generator has not been seeded\n");
  140. BIO_printf(bio_err, "with much random data.\n");
  141. if (consider_randfile) { /* explanation does not apply when a
  142. * file is explicitly named */
  143. BIO_printf(bio_err,
  144. "Consider setting the RANDFILE environment variable to point at a file that\n");
  145. BIO_printf(bio_err,
  146. "'random' data can be kept in (the file will be overwritten).\n");
  147. }
  148. }
  149. return 0;
  150. }
  151. }
  152. seeded = 1;
  153. return 1;
  154. }
  155. long app_RAND_load_files(char *name)
  156. {
  157. char *p, *n;
  158. int last;
  159. long tot = 0;
  160. #ifndef OPENSSL_NO_EGD
  161. int egd;
  162. #endif
  163. for (;;) {
  164. last = 0;
  165. for (p = name; ((*p != '\0') && (*p != LIST_SEPARATOR_CHAR)); p++) ;
  166. if (*p == '\0')
  167. last = 1;
  168. *p = '\0';
  169. n = name;
  170. name = p + 1;
  171. if (*n == '\0')
  172. break;
  173. #ifndef OPENSSL_NO_EGD
  174. egd = RAND_egd(n);
  175. if (egd > 0)
  176. tot += egd;
  177. else
  178. #endif
  179. tot += RAND_load_file(n, -1);
  180. if (last)
  181. break;
  182. }
  183. if (tot > 512)
  184. app_RAND_allow_write_file();
  185. return (tot);
  186. }
  187. int app_RAND_write_file(const char *file)
  188. {
  189. char buffer[200];
  190. if (egdsocket || !seeded)
  191. /*
  192. * If we did not manage to read the seed file, we should not write a
  193. * low-entropy seed file back -- it would suppress a crucial warning
  194. * the next time we want to use it.
  195. */
  196. return 0;
  197. if (file == NULL)
  198. file = RAND_file_name(buffer, sizeof buffer);
  199. if (file == NULL || !RAND_write_file(file)) {
  200. BIO_printf(bio_err, "unable to write 'random state'\n");
  201. return 0;
  202. }
  203. return 1;
  204. }
  205. void app_RAND_allow_write_file(void)
  206. {
  207. seeded = 1;
  208. }