2
0

rdcpu_sanitytest.c 4.1 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150
  1. /*
  2. * Copyright 2018-2022 The OpenSSL Project Authors. All Rights Reserved.
  3. *
  4. * Licensed under the Apache License 2.0 (the "License"). You may not use
  5. * this file except in compliance with the License. You can obtain a copy
  6. * in the file LICENSE in the source distribution or at
  7. * https://www.openssl.org/source/license.html
  8. */
  9. #include <stdio.h>
  10. #include <stdlib.h>
  11. #include <string.h>
  12. #include "testutil.h"
  13. #include "internal/cryptlib.h"
  14. #if (defined(__i386) || defined(__i386__) || defined(_M_IX86) || \
  15. defined(__x86_64) || defined(__x86_64__) || \
  16. defined(_M_AMD64) || defined (_M_X64)) && defined(OPENSSL_CPUID_OBJ)
  17. # define IS_X_86 1
  18. size_t OPENSSL_ia32_rdrand_bytes(unsigned char *buf, size_t len);
  19. size_t OPENSSL_ia32_rdseed_bytes(unsigned char *buf, size_t len);
  20. #else
  21. # define IS_X_86 0
  22. #endif
  23. #if defined(__aarch64__) && defined(OPENSSL_CPUID_OBJ)
  24. # define IS_AARCH_64 1
  25. # include "arm_arch.h"
  26. size_t OPENSSL_rndr_bytes(unsigned char *buf, size_t len);
  27. size_t OPENSSL_rndrrs_bytes(unsigned char *buf, size_t len);
  28. #else
  29. # define IS_AARCH_64 0
  30. #endif
  31. #if (IS_X_86 || IS_AARCH_64)
  32. static int sanity_check_bytes(size_t (*rng)(unsigned char *, size_t),
  33. int rounds, int min_failures, int max_retries, int max_zero_words)
  34. {
  35. int testresult = 0;
  36. unsigned char prior[31] = {0}, buf[31] = {0}, check[7];
  37. int failures = 0, zero_words = 0;
  38. int i;
  39. for (i = 0; i < rounds; i++) {
  40. size_t generated = 0;
  41. int retry;
  42. for (retry = 0; retry < max_retries; retry++) {
  43. generated = rng(buf, sizeof(buf));
  44. if (generated == sizeof(buf))
  45. break;
  46. failures++;
  47. }
  48. /*-
  49. * Verify that we don't have too many unexpected runs of zeroes,
  50. * implying that we might be accidentally using the 32-bit RDRAND
  51. * instead of the 64-bit one on 64-bit systems.
  52. */
  53. size_t j;
  54. for (j = 0; j < sizeof(buf) - 1; j++) {
  55. if (buf[j] == 0 && buf[j+1] == 0) {
  56. zero_words++;
  57. }
  58. }
  59. if (!TEST_int_eq(generated, sizeof(buf)))
  60. goto end;
  61. if (!TEST_false(!memcmp(prior, buf, sizeof(buf))))
  62. goto end;
  63. /* Verify that the last 7 bytes of buf aren't all the same value */
  64. unsigned char *tail = &buf[sizeof(buf) - sizeof(check)];
  65. memset(check, tail[0], 7);
  66. if (!TEST_false(!memcmp(check, tail, sizeof(check))))
  67. goto end;
  68. /* Save the result and make sure it's different next time */
  69. memcpy(prior, buf, sizeof(buf));
  70. }
  71. if (!TEST_int_le(zero_words, max_zero_words))
  72. goto end;
  73. if (!TEST_int_ge(failures, min_failures))
  74. goto end;
  75. testresult = 1;
  76. end:
  77. return testresult;
  78. }
  79. #endif
  80. #if IS_X_86
  81. static int sanity_check_rdrand_bytes(void)
  82. {
  83. return sanity_check_bytes(OPENSSL_ia32_rdrand_bytes, 1000, 0, 10, 10);
  84. }
  85. static int sanity_check_rdseed_bytes(void)
  86. {
  87. /*-
  88. * RDSEED may take many retries to succeed; note that this is effectively
  89. * multiplied by the 8x retry loop in asm, and failure probabilities are
  90. * increased by the fact that we need either 4 or 8 samples depending on
  91. * the platform.
  92. */
  93. return sanity_check_bytes(OPENSSL_ia32_rdseed_bytes, 1000, 1, 10000, 10);
  94. }
  95. #elif IS_AARCH_64
  96. static int sanity_check_rndr_bytes(void)
  97. {
  98. return sanity_check_bytes(OPENSSL_rndr_bytes, 1000, 0, 10, 10);
  99. }
  100. static int sanity_check_rndrrs_bytes(void)
  101. {
  102. return sanity_check_bytes(OPENSSL_rndrrs_bytes, 1000, 0, 10000, 10);
  103. }
  104. #endif
  105. int setup_tests(void)
  106. {
  107. #if (IS_X_86 || IS_AARCH_64)
  108. OPENSSL_cpuid_setup();
  109. # if IS_X_86
  110. int have_rdseed = (OPENSSL_ia32cap_P[2] & (1 << 18)) != 0;
  111. int have_rdrand = (OPENSSL_ia32cap_P[1] & (1 << (62 - 32))) != 0;
  112. if (have_rdrand) {
  113. ADD_TEST(sanity_check_rdrand_bytes);
  114. }
  115. if (have_rdseed) {
  116. ADD_TEST(sanity_check_rdseed_bytes);
  117. }
  118. # elif IS_AARCH_64
  119. int have_rndr_rndrrs = (OPENSSL_armcap_P & (1 << 8)) != 0;
  120. if (have_rndr_rndrrs) {
  121. ADD_TEST(sanity_check_rndr_bytes);
  122. ADD_TEST(sanity_check_rndrrs_bytes);
  123. }
  124. # endif
  125. #endif
  126. return 1;
  127. }