|
Packit |
90a5c9 |
/* Licensed to the Apache Software Foundation (ASF) under one or more
|
|
Packit |
90a5c9 |
* contributor license agreements. See the NOTICE file distributed with
|
|
Packit |
90a5c9 |
* this work for additional information regarding copyright ownership.
|
|
Packit |
90a5c9 |
* The ASF licenses this file to You under the Apache License, Version 2.0
|
|
Packit |
90a5c9 |
* (the "License"); you may not use this file except in compliance with
|
|
Packit |
90a5c9 |
* the License. You may obtain a copy of the License at
|
|
Packit |
90a5c9 |
*
|
|
Packit |
90a5c9 |
* http://www.apache.org/licenses/LICENSE-2.0
|
|
Packit |
90a5c9 |
*
|
|
Packit |
90a5c9 |
* Unless required by applicable law or agreed to in writing, software
|
|
Packit |
90a5c9 |
* distributed under the License is distributed on an "AS IS" BASIS,
|
|
Packit |
90a5c9 |
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
Packit |
90a5c9 |
* See the License for the specific language governing permissions and
|
|
Packit |
90a5c9 |
* limitations under the License.
|
|
Packit |
90a5c9 |
*/
|
|
Packit |
90a5c9 |
|
|
Packit |
90a5c9 |
/* _ _
|
|
Packit |
90a5c9 |
* _ __ ___ ___ __| | ___ ___| | mod_ssl
|
|
Packit |
90a5c9 |
* | '_ ` _ \ / _ \ / _` | / __/ __| | Apache Interface to OpenSSL
|
|
Packit |
90a5c9 |
* | | | | | | (_) | (_| | \__ \__ \ |
|
|
Packit |
90a5c9 |
* |_| |_| |_|\___/ \__,_|___|___/___/_|
|
|
Packit |
90a5c9 |
* |_____|
|
|
Packit |
90a5c9 |
* ssl_engine_rand.c
|
|
Packit |
90a5c9 |
* Random Number Generator Seeding
|
|
Packit |
90a5c9 |
*/
|
|
Packit |
90a5c9 |
/* ``The generation of random
|
|
Packit |
90a5c9 |
numbers is too important
|
|
Packit |
90a5c9 |
to be left to chance.'' */
|
|
Packit |
90a5c9 |
|
|
Packit |
90a5c9 |
#include "ssl_private.h"
|
|
Packit |
90a5c9 |
|
|
Packit |
90a5c9 |
/* _________________________________________________________________
|
|
Packit |
90a5c9 |
**
|
|
Packit |
90a5c9 |
** Support for better seeding of SSL library's RNG
|
|
Packit |
90a5c9 |
** _________________________________________________________________
|
|
Packit |
90a5c9 |
*/
|
|
Packit |
90a5c9 |
|
|
Packit |
90a5c9 |
static int ssl_rand_choosenum(int, int);
|
|
Packit |
90a5c9 |
static int ssl_rand_feedfp(apr_pool_t *, apr_file_t *, int);
|
|
Packit |
90a5c9 |
|
|
Packit |
90a5c9 |
int ssl_rand_seed(server_rec *s, apr_pool_t *p, ssl_rsctx_t nCtx, char *prefix)
|
|
Packit |
90a5c9 |
{
|
|
Packit |
90a5c9 |
SSLModConfigRec *mc;
|
|
Packit |
90a5c9 |
apr_array_header_t *apRandSeed;
|
|
Packit |
90a5c9 |
ssl_randseed_t *pRandSeeds;
|
|
Packit |
90a5c9 |
ssl_randseed_t *pRandSeed;
|
|
Packit |
90a5c9 |
unsigned char stackdata[256];
|
|
Packit |
90a5c9 |
int nDone;
|
|
Packit |
90a5c9 |
apr_file_t *fp;
|
|
Packit |
90a5c9 |
int i, n, l;
|
|
Packit |
90a5c9 |
|
|
Packit |
90a5c9 |
mc = myModConfig(s);
|
|
Packit |
90a5c9 |
nDone = 0;
|
|
Packit |
90a5c9 |
apRandSeed = mc->aRandSeed;
|
|
Packit |
90a5c9 |
pRandSeeds = (ssl_randseed_t *)apRandSeed->elts;
|
|
Packit |
90a5c9 |
for (i = 0; i < apRandSeed->nelts; i++) {
|
|
Packit |
90a5c9 |
pRandSeed = &pRandSeeds[i];
|
|
Packit |
90a5c9 |
if (pRandSeed->nCtx == nCtx) {
|
|
Packit |
90a5c9 |
if (pRandSeed->nSrc == SSL_RSSRC_FILE) {
|
|
Packit |
90a5c9 |
/*
|
|
Packit |
90a5c9 |
* seed in contents of an external file
|
|
Packit |
90a5c9 |
*/
|
|
Packit |
90a5c9 |
if (apr_file_open(&fp, pRandSeed->cpPath,
|
|
Packit |
90a5c9 |
APR_READ, APR_OS_DEFAULT, p) != APR_SUCCESS)
|
|
Packit |
90a5c9 |
continue;
|
|
Packit |
90a5c9 |
nDone += ssl_rand_feedfp(p, fp, pRandSeed->nBytes);
|
|
Packit |
90a5c9 |
apr_file_close(fp);
|
|
Packit |
90a5c9 |
}
|
|
Packit |
90a5c9 |
else if (pRandSeed->nSrc == SSL_RSSRC_EXEC) {
|
|
Packit |
90a5c9 |
const char *cmd = pRandSeed->cpPath;
|
|
Packit |
90a5c9 |
const char **argv = apr_palloc(p, sizeof(char *) * 3);
|
|
Packit |
90a5c9 |
/*
|
|
Packit |
90a5c9 |
* seed in contents generated by an external program
|
|
Packit |
90a5c9 |
*/
|
|
Packit |
90a5c9 |
argv[0] = cmd;
|
|
Packit |
90a5c9 |
argv[1] = apr_itoa(p, pRandSeed->nBytes);
|
|
Packit |
90a5c9 |
argv[2] = NULL;
|
|
Packit |
90a5c9 |
|
|
Packit |
90a5c9 |
if ((fp = ssl_util_ppopen(s, p, cmd, argv)) == NULL)
|
|
Packit |
90a5c9 |
continue;
|
|
Packit |
90a5c9 |
nDone += ssl_rand_feedfp(p, fp, pRandSeed->nBytes);
|
|
Packit |
90a5c9 |
ssl_util_ppclose(s, p, fp);
|
|
Packit |
90a5c9 |
}
|
|
Packit |
90a5c9 |
#ifdef HAVE_RAND_EGD
|
|
Packit |
90a5c9 |
else if (pRandSeed->nSrc == SSL_RSSRC_EGD) {
|
|
Packit |
90a5c9 |
/*
|
|
Packit |
90a5c9 |
* seed in contents provided by the external
|
|
Packit |
90a5c9 |
* Entropy Gathering Daemon (EGD)
|
|
Packit |
90a5c9 |
*/
|
|
Packit |
90a5c9 |
if ((n = RAND_egd(pRandSeed->cpPath)) == -1)
|
|
Packit |
90a5c9 |
continue;
|
|
Packit |
90a5c9 |
nDone += n;
|
|
Packit |
90a5c9 |
}
|
|
Packit |
90a5c9 |
#endif
|
|
Packit |
90a5c9 |
else if (pRandSeed->nSrc == SSL_RSSRC_BUILTIN) {
|
|
Packit |
90a5c9 |
struct {
|
|
Packit |
90a5c9 |
time_t t;
|
|
Packit |
90a5c9 |
pid_t pid;
|
|
Packit |
90a5c9 |
} my_seed;
|
|
Packit |
90a5c9 |
|
|
Packit |
90a5c9 |
/*
|
|
Packit |
90a5c9 |
* seed in the current time (usually just 4 bytes)
|
|
Packit |
90a5c9 |
*/
|
|
Packit |
90a5c9 |
my_seed.t = time(NULL);
|
|
Packit |
90a5c9 |
|
|
Packit |
90a5c9 |
/*
|
|
Packit |
90a5c9 |
* seed in the current process id (usually just 4 bytes)
|
|
Packit |
90a5c9 |
*/
|
|
Packit |
90a5c9 |
my_seed.pid = mc->pid;
|
|
Packit |
90a5c9 |
|
|
Packit |
90a5c9 |
l = sizeof(my_seed);
|
|
Packit |
90a5c9 |
RAND_seed((unsigned char *)&my_seed, l);
|
|
Packit |
90a5c9 |
nDone += l;
|
|
Packit |
90a5c9 |
|
|
Packit |
90a5c9 |
/*
|
|
Packit |
90a5c9 |
* seed in some current state of the run-time stack (128 bytes)
|
|
Packit |
90a5c9 |
*/
|
|
Packit |
90a5c9 |
n = ssl_rand_choosenum(0, sizeof(stackdata)-128-1);
|
|
Packit |
90a5c9 |
RAND_seed(stackdata+n, 128);
|
|
Packit |
90a5c9 |
nDone += 128;
|
|
Packit |
90a5c9 |
|
|
Packit |
90a5c9 |
}
|
|
Packit |
90a5c9 |
}
|
|
Packit |
90a5c9 |
}
|
|
Packit |
90a5c9 |
ap_log_error(APLOG_MARK, APLOG_TRACE2, 0, s,
|
|
Packit |
90a5c9 |
"%sSeeding PRNG with %d bytes of entropy", prefix, nDone);
|
|
Packit |
90a5c9 |
|
|
Packit |
90a5c9 |
if (RAND_status() == 0)
|
|
Packit |
90a5c9 |
ap_log_error(APLOG_MARK, APLOG_WARNING, 0, s, APLOGNO(01990)
|
|
Packit |
90a5c9 |
"%sPRNG still contains insufficient entropy!", prefix);
|
|
Packit |
90a5c9 |
|
|
Packit |
90a5c9 |
return nDone;
|
|
Packit |
90a5c9 |
}
|
|
Packit |
90a5c9 |
|
|
Packit |
90a5c9 |
#define BUFSIZE 8192
|
|
Packit |
90a5c9 |
|
|
Packit |
90a5c9 |
static int ssl_rand_feedfp(apr_pool_t *p, apr_file_t *fp, int nReq)
|
|
Packit |
90a5c9 |
{
|
|
Packit |
90a5c9 |
apr_size_t nDone;
|
|
Packit |
90a5c9 |
unsigned char caBuf[BUFSIZE];
|
|
Packit |
90a5c9 |
apr_size_t nBuf;
|
|
Packit |
90a5c9 |
apr_size_t nRead;
|
|
Packit |
90a5c9 |
apr_size_t nTodo;
|
|
Packit |
90a5c9 |
|
|
Packit |
90a5c9 |
nDone = 0;
|
|
Packit |
90a5c9 |
nRead = BUFSIZE;
|
|
Packit |
90a5c9 |
nTodo = nReq;
|
|
Packit |
90a5c9 |
while (1) {
|
|
Packit |
90a5c9 |
if (nReq > 0)
|
|
Packit |
90a5c9 |
nRead = (nTodo < BUFSIZE ? nTodo : BUFSIZE);
|
|
Packit |
90a5c9 |
nBuf = nRead;
|
|
Packit |
90a5c9 |
if (apr_file_read(fp, caBuf, &nBuf) != APR_SUCCESS)
|
|
Packit |
90a5c9 |
break;
|
|
Packit |
90a5c9 |
RAND_seed(caBuf, nBuf);
|
|
Packit |
90a5c9 |
nDone += nBuf;
|
|
Packit |
90a5c9 |
if (nReq > 0) {
|
|
Packit |
90a5c9 |
nTodo -= nBuf;
|
|
Packit |
90a5c9 |
if (nTodo <= 0)
|
|
Packit |
90a5c9 |
break;
|
|
Packit |
90a5c9 |
}
|
|
Packit |
90a5c9 |
}
|
|
Packit |
90a5c9 |
return nDone;
|
|
Packit |
90a5c9 |
}
|
|
Packit |
90a5c9 |
|
|
Packit |
90a5c9 |
static int ssl_rand_choosenum(int l, int h)
|
|
Packit |
90a5c9 |
{
|
|
Packit |
90a5c9 |
int i;
|
|
Packit |
90a5c9 |
char buf[50];
|
|
Packit |
90a5c9 |
|
|
Packit |
90a5c9 |
apr_snprintf(buf, sizeof(buf), "%.0f",
|
|
Packit |
90a5c9 |
(((double)(rand()%RAND_MAX)/RAND_MAX)*(h-l)));
|
|
Packit |
90a5c9 |
i = atoi(buf)+1;
|
|
Packit |
90a5c9 |
if (i < l) i = l;
|
|
Packit |
90a5c9 |
if (i > h) i = h;
|
|
Packit |
90a5c9 |
return i;
|
|
Packit |
90a5c9 |
}
|
|
Packit |
90a5c9 |
|