1.1 --- /dev/null Thu Jan 01 00:00:00 1970 +0000
1.2 +++ b/os/ossrv/ssl/tsrc/topenssl/src/app_rand.c Fri Jun 15 03:10:57 2012 +0200
1.3 @@ -0,0 +1,217 @@
1.4 +/* apps/app_rand.c */
1.5 +/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
1.6 + * All rights reserved.
1.7 + *
1.8 + * This package is an SSL implementation written
1.9 + * by Eric Young (eay@cryptsoft.com).
1.10 + * The implementation was written so as to conform with Netscapes SSL.
1.11 + *
1.12 + * This library is free for commercial and non-commercial use as long as
1.13 + * the following conditions are aheared to. The following conditions
1.14 + * apply to all code found in this distribution, be it the RC4, RSA,
1.15 + * lhash, DES, etc., code; not just the SSL code. The SSL documentation
1.16 + * included with this distribution is covered by the same copyright terms
1.17 + * except that the holder is Tim Hudson (tjh@cryptsoft.com).
1.18 + *
1.19 + * Copyright remains Eric Young's, and as such any Copyright notices in
1.20 + * the code are not to be removed.
1.21 + * If this package is used in a product, Eric Young should be given attribution
1.22 + * as the author of the parts of the library used.
1.23 + * This can be in the form of a textual message at program startup or
1.24 + * in documentation (online or textual) provided with the package.
1.25 + *
1.26 + * Redistribution and use in source and binary forms, with or without
1.27 + * modification, are permitted provided that the following conditions
1.28 + * are met:
1.29 + * 1. Redistributions of source code must retain the copyright
1.30 + * notice, this list of conditions and the following disclaimer.
1.31 + * 2. Redistributions in binary form must reproduce the above copyright
1.32 + * notice, this list of conditions and the following disclaimer in the
1.33 + * documentation and/or other materials provided with the distribution.
1.34 + * 3. All advertising materials mentioning features or use of this software
1.35 + * must display the following acknowledgement:
1.36 + * "This product includes cryptographic software written by
1.37 + * Eric Young (eay@cryptsoft.com)"
1.38 + * The word 'cryptographic' can be left out if the rouines from the library
1.39 + * being used are not cryptographic related :-).
1.40 + * 4. If you include any Windows specific code (or a derivative thereof) from
1.41 + * the apps directory (application code) you must include an acknowledgement:
1.42 + * "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
1.43 + *
1.44 + * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
1.45 + * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
1.46 + * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
1.47 + * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
1.48 + * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
1.49 + * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
1.50 + * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
1.51 + * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
1.52 + * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
1.53 + * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
1.54 + * SUCH DAMAGE.
1.55 + *
1.56 + * The licence and distribution terms for any publically available version or
1.57 + * derivative of this code cannot be changed. i.e. this code cannot simply be
1.58 + * copied and put under another distribution licence
1.59 + * [including the GNU Public Licence.]
1.60 + */
1.61 +/* ====================================================================
1.62 + * Copyright (c) 1998-2000 The OpenSSL Project. All rights reserved.
1.63 + *
1.64 + * Redistribution and use in source and binary forms, with or without
1.65 + * modification, are permitted provided that the following conditions
1.66 + * are met:
1.67 + *
1.68 + * 1. Redistributions of source code must retain the above copyright
1.69 + * notice, this list of conditions and the following disclaimer.
1.70 + *
1.71 + * 2. Redistributions in binary form must reproduce the above copyright
1.72 + * notice, this list of conditions and the following disclaimer in
1.73 + * the documentation and/or other materials provided with the
1.74 + * distribution.
1.75 + *
1.76 + * 3. All advertising materials mentioning features or use of this
1.77 + * software must display the following acknowledgment:
1.78 + * "This product includes software developed by the OpenSSL Project
1.79 + * for use in the OpenSSL Toolkit. (http://www.openssl.org/)"
1.80 + *
1.81 + * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
1.82 + * endorse or promote products derived from this software without
1.83 + * prior written permission. For written permission, please contact
1.84 + * openssl-core@openssl.org.
1.85 + *
1.86 + * 5. Products derived from this software may not be called "OpenSSL"
1.87 + * nor may "OpenSSL" appear in their names without prior written
1.88 + * permission of the OpenSSL Project.
1.89 + *
1.90 + * 6. Redistributions of any form whatsoever must retain the following
1.91 + * acknowledgment:
1.92 + * "This product includes software developed by the OpenSSL Project
1.93 + * for use in the OpenSSL Toolkit (http://www.openssl.org/)"
1.94 + *
1.95 + * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
1.96 + * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
1.97 + * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
1.98 + * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
1.99 + * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
1.100 + * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
1.101 + * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
1.102 + * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
1.103 + * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
1.104 + * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
1.105 + * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
1.106 + * OF THE POSSIBILITY OF SUCH DAMAGE.
1.107 + * ====================================================================
1.108 + *
1.109 + * This product includes cryptographic software written by Eric Young
1.110 + * (eay@cryptsoft.com). This product includes software written by Tim
1.111 + * Hudson (tjh@cryptsoft.com).
1.112 + *
1.113 + */
1.114 +
1.115 +#define NON_MAIN
1.116 +#include "apps.h"
1.117 +#undef NON_MAIN
1.118 +#include <openssl/bio.h>
1.119 +#include <openssl/rand.h>
1.120 +
1.121 +static int seeded = 0;
1.122 +static int egdsocket = 0;
1.123 +
1.124 +int app_RAND_load_file(const char *file, BIO *bio_e, int dont_warn)
1.125 + {
1.126 + int consider_randfile = (file == NULL);
1.127 + char buffer[200];
1.128 +
1.129 +#ifdef OPENSSL_SYS_WINDOWS
1.130 + BIO_printf(bio_e,"Loading 'screen' into random state -");
1.131 + BIO_flush(bio_e);
1.132 + RAND_screen();
1.133 + BIO_printf(bio_e," done\n");
1.134 +#endif
1.135 +
1.136 + if (file == NULL)
1.137 + file = RAND_file_name(buffer, sizeof buffer);
1.138 + else if (RAND_egd(file) > 0)
1.139 + {
1.140 + /* we try if the given filename is an EGD socket.
1.141 + if it is, we don't write anything back to the file. */
1.142 + egdsocket = 1;
1.143 + return 1;
1.144 + }
1.145 + if (file == NULL || !RAND_load_file(file, -1))
1.146 + {
1.147 + if (RAND_status() == 0)
1.148 + {
1.149 + if (!dont_warn)
1.150 + {
1.151 + BIO_printf(bio_e,"unable to load 'random state'\n");
1.152 + BIO_printf(bio_e,"This means that the random number generator has not been seeded\n");
1.153 + BIO_printf(bio_e,"with much random data.\n");
1.154 + if (consider_randfile) /* explanation does not apply when a file is explicitly named */
1.155 + {
1.156 + BIO_printf(bio_e,"Consider setting the RANDFILE environment variable to point at a file that\n");
1.157 + BIO_printf(bio_e,"'random' data can be kept in (the file will be overwritten).\n");
1.158 + }
1.159 + }
1.160 + return 0;
1.161 + }
1.162 + }
1.163 + seeded = 1;
1.164 + return 1;
1.165 + }
1.166 +
1.167 +long app_RAND_load_files(char *name)
1.168 + {
1.169 + char *p,*n;
1.170 + int last;
1.171 + long tot=0;
1.172 + int egd;
1.173 +
1.174 + for (;;)
1.175 + {
1.176 + last=0;
1.177 + for (p=name; ((*p != '\0') && (*p != LIST_SEPARATOR_CHAR)); p++);
1.178 + if (*p == '\0') last=1;
1.179 + *p='\0';
1.180 + n=name;
1.181 + name=p+1;
1.182 + if (*n == '\0') break;
1.183 +
1.184 + egd=RAND_egd(n);
1.185 + if (egd > 0)
1.186 + tot+=egd;
1.187 + else
1.188 + tot+=RAND_load_file(n,-1);
1.189 + if (last) break;
1.190 + }
1.191 + if (tot > 512)
1.192 + app_RAND_allow_write_file();
1.193 + return(tot);
1.194 + }
1.195 +
1.196 +int app_RAND_write_file(const char *file, BIO *bio_e)
1.197 + {
1.198 + char buffer[200];
1.199 +
1.200 + if (egdsocket || !seeded)
1.201 + /* If we did not manage to read the seed file,
1.202 + * we should not write a low-entropy seed file back --
1.203 + * it would suppress a crucial warning the next time
1.204 + * we want to use it. */
1.205 + return 0;
1.206 +
1.207 + if (file == NULL)
1.208 + file = RAND_file_name(buffer, sizeof buffer);
1.209 + if (file == NULL || !RAND_write_file(file))
1.210 + {
1.211 + BIO_printf(bio_e,"unable to write 'random state'\n");
1.212 + return 0;
1.213 + }
1.214 + return 1;
1.215 + }
1.216 +
1.217 +void app_RAND_allow_write_file(void)
1.218 + {
1.219 + seeded = 1;
1.220 + }