xref: /openbsd-src/lib/libcrypto/rand/rand_lib.c (revision a28daedfc357b214be5c701aa8ba8adb29a7f1c2) 
1 /* crypto/rand/rand_lib.c */
2 /* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
3  * All rights reserved.
4  *
5  * This package is an SSL implementation written
6  * by Eric Young (eay@cryptsoft.com).
7  * The implementation was written so as to conform with Netscapes SSL.
8  *
9  * This library is free for commercial and non-commercial use as long as
10  * the following conditions are aheared to.  The following conditions
11  * apply to all code found in this distribution, be it the RC4, RSA,
12  * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
13  * included with this distribution is covered by the same copyright terms
14  * except that the holder is Tim Hudson (tjh@cryptsoft.com).
15  *
16  * Copyright remains Eric Young's, and as such any Copyright notices in
17  * the code are not to be removed.
18  * If this package is used in a product, Eric Young should be given attribution
19  * as the author of the parts of the library used.
20  * This can be in the form of a textual message at program startup or
21  * in documentation (online or textual) provided with the package.
22  *
23  * Redistribution and use in source and binary forms, with or without
24  * modification, are permitted provided that the following conditions
25  * are met:
26  * 1. Redistributions of source code must retain the copyright
27  *    notice, this list of conditions and the following disclaimer.
28  * 2. Redistributions in binary form must reproduce the above copyright
29  *    notice, this list of conditions and the following disclaimer in the
30  *    documentation and/or other materials provided with the distribution.
31  * 3. All advertising materials mentioning features or use of this software
32  *    must display the following acknowledgement:
33  *    "This product includes cryptographic software written by
34  *     Eric Young (eay@cryptsoft.com)"
35  *    The word 'cryptographic' can be left out if the rouines from the library
36  *    being used are not cryptographic related :-).
37  * 4. If you include any Windows specific code (or a derivative thereof) from
38  *    the apps directory (application code) you must include an acknowledgement:
39  *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
40  *
41  * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
42  * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
43  * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
44  * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
45  * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
46  * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
47  * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
48  * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
49  * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
50  * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
51  * SUCH DAMAGE.
52  *
53  * The licence and distribution terms for any publically available version or
54  * derivative of this code cannot be changed.  i.e. this code cannot simply be
55  * copied and put under another distribution licence
56  * [including the GNU Public Licence.]
57  */
58 
59 #include <stdio.h>
60 #include <time.h>
61 #include "cryptlib.h"
62 #include <openssl/rand.h>
63 #include "rand_lcl.h"
64 #ifdef OPENSSL_FIPS
65 #include <openssl/fips.h>
66 #include <openssl/fips_rand.h>
67 #endif
68 
69 #ifndef OPENSSL_NO_ENGINE
70 #include <openssl/engine.h>
71 #endif
72 
73 static const RAND_METHOD *default_RAND_meth = NULL;
74 
75 #ifdef OPENSSL_FIPS
76 
77 static int fips_RAND_set_rand_method(const RAND_METHOD *meth,
78 					const RAND_METHOD **pmeth)
79 	{
80 	*pmeth = meth;
81 	return 1;
82 	}
83 
84 static const RAND_METHOD *fips_RAND_get_rand_method(const RAND_METHOD **pmeth)
85 	{
86 	if (!*pmeth)
87 		{
88 		if(FIPS_mode())
89 			*pmeth=FIPS_rand_method();
90 		else
91 			*pmeth = RAND_SSLeay();
92 		}
93 
94 	if(FIPS_mode()
95 		&& *pmeth != FIPS_rand_check())
96 	    {
97 	    RANDerr(RAND_F_FIPS_RAND_GET_RAND_METHOD,RAND_R_NON_FIPS_METHOD);
98 	    return 0;
99 	    }
100 
101 	return *pmeth;
102 	}
103 
104 static int (*RAND_set_rand_method_func)(const RAND_METHOD *meth,
105 						const RAND_METHOD **pmeth)
106 	= fips_RAND_set_rand_method;
107 static const RAND_METHOD *(*RAND_get_rand_method_func)
108 						(const RAND_METHOD **pmeth)
109 	= fips_RAND_get_rand_method;
110 
111 #ifndef OPENSSL_NO_ENGINE
112 void int_RAND_set_callbacks(
113 	int (*set_rand_func)(const RAND_METHOD *meth,
114 						const RAND_METHOD **pmeth),
115 	const RAND_METHOD *(*get_rand_func)
116 						(const RAND_METHOD **pmeth))
117 	{
118 	RAND_set_rand_method_func = set_rand_func;
119 	RAND_get_rand_method_func = get_rand_func;
120 	}
121 #endif
122 
123 int RAND_set_rand_method(const RAND_METHOD *meth)
124 	{
125 	return RAND_set_rand_method_func(meth, &default_RAND_meth);
126 	}
127 
128 const RAND_METHOD *RAND_get_rand_method(void)
129 	{
130 	return RAND_get_rand_method_func(&default_RAND_meth);
131 	}
132 
133 #else
134 
135 #ifndef OPENSSL_NO_ENGINE
136 /* non-NULL if default_RAND_meth is ENGINE-provided */
137 static ENGINE *funct_ref =NULL;
138 #endif
139 
140 int RAND_set_rand_method(const RAND_METHOD *meth)
141 	{
142 #ifndef OPENSSL_NO_ENGINE
143 	if(funct_ref)
144 		{
145 		ENGINE_finish(funct_ref);
146 		funct_ref = NULL;
147 		}
148 #endif
149 	default_RAND_meth = meth;
150 	return 1;
151 	}
152 
153 const RAND_METHOD *RAND_get_rand_method(void)
154 	{
155 	if (!default_RAND_meth)
156 		{
157 #ifndef OPENSSL_NO_ENGINE
158 		ENGINE *e = ENGINE_get_default_RAND();
159 		if(e)
160 			{
161 			default_RAND_meth = ENGINE_get_RAND(e);
162 			if(!default_RAND_meth)
163 				{
164 				ENGINE_finish(e);
165 				e = NULL;
166 				}
167 			}
168 		if(e)
169 			funct_ref = e;
170 		else
171 #endif
172 			default_RAND_meth = RAND_SSLeay();
173 		}
174 	return default_RAND_meth;
175 	}
176 
177 #ifndef OPENSSL_NO_ENGINE
178 int RAND_set_rand_engine(ENGINE *engine)
179 	{
180 	const RAND_METHOD *tmp_meth = NULL;
181 	if(engine)
182 		{
183 		if(!ENGINE_init(engine))
184 			return 0;
185 		tmp_meth = ENGINE_get_RAND(engine);
186 		if(!tmp_meth)
187 			{
188 			ENGINE_finish(engine);
189 			return 0;
190 			}
191 		}
192 	/* This function releases any prior ENGINE so call it first */
193 	RAND_set_rand_method(tmp_meth);
194 	funct_ref = engine;
195 	return 1;
196 	}
197 #endif
198 
199 #endif
200 
201 void RAND_cleanup(void)
202 	{
203 	const RAND_METHOD *meth = RAND_get_rand_method();
204 	if (meth && meth->cleanup)
205 		meth->cleanup();
206 	RAND_set_rand_method(NULL);
207 	}
208 
209 void RAND_seed(const void *buf, int num)
210 	{
211 	const RAND_METHOD *meth = RAND_get_rand_method();
212 	if (meth && meth->seed)
213 		meth->seed(buf,num);
214 	}
215 
216 void RAND_add(const void *buf, int num, double entropy)
217 	{
218 	const RAND_METHOD *meth = RAND_get_rand_method();
219 	if (meth && meth->add)
220 		meth->add(buf,num,entropy);
221 	}
222 
223 int RAND_bytes(unsigned char *buf, int num)
224 	{
225 	const RAND_METHOD *meth = RAND_get_rand_method();
226 	if (meth && meth->bytes)
227 		return meth->bytes(buf,num);
228 	return(-1);
229 	}
230 
231 int RAND_pseudo_bytes(unsigned char *buf, int num)
232 	{
233 	const RAND_METHOD *meth = RAND_get_rand_method();
234 	if (meth && meth->pseudorand)
235 		return meth->pseudorand(buf,num);
236 	return(-1);
237 	}
238 
239 int RAND_status(void)
240 	{
241 	const RAND_METHOD *meth = RAND_get_rand_method();
242 	if (meth && meth->status)
243 		return meth->status();
244 	return 0;
245 	}
246