source-git / openssl

Clone
Source Code
GIT

Blame test/rdrand_sanitytest.c

c8 c8s master
  1.   f3830c93d16a7616a69ed9876ce5c40b4e5a7679
  2.   test
  3.   rdrand_sanitytest.c
Blob History Raw
Packit c4476c 
/*
Packit c4476c 
 * Copyright 2018-2019 The OpenSSL Project Authors. All Rights Reserved.
Packit c4476c 
 *
Packit c4476c 
 * Licensed under the OpenSSL license (the "License").  You may not use
Packit c4476c 
 * this file except in compliance with the License.  You can obtain a copy
Packit c4476c 
 * in the file LICENSE in the source distribution or at
Packit c4476c 
 * https://www.openssl.org/source/license.html
Packit c4476c 
 */
Packit c4476c
Packit c4476c 
#include <stdio.h>
Packit c4476c 
#include <stdlib.h>
Packit c4476c 
#include <string.h>
Packit c4476c 
#include "testutil.h"
Packit c4476c 
#include <openssl/opensslconf.h>
Packit c4476c
Packit c4476c 
#if (defined(__i386)   || defined(__i386__)   || defined(_M_IX86) || \
Packit c4476c 
     defined(__x86_64) || defined(__x86_64__) || \
Packit c4476c 
     defined(_M_AMD64) || defined (_M_X64)) && defined(OPENSSL_CPUID_OBJ)
Packit c4476c
Packit c4476c 
size_t OPENSSL_ia32_rdrand_bytes(unsigned char *buf, size_t len);
Packit c4476c 
size_t OPENSSL_ia32_rdseed_bytes(unsigned char *buf, size_t len);
Packit c4476c
Packit c4476c 
void OPENSSL_cpuid_setup(void);
Packit c4476c
Packit c4476c 
extern unsigned int OPENSSL_ia32cap_P[4];
Packit c4476c
Packit c4476c 
static int sanity_check_bytes(size_t (*rng)(unsigned char *, size_t),
Packit c4476c 
    int rounds, int min_failures, int max_retries, int max_zero_words)
Packit c4476c 
{
Packit c4476c 
    int testresult = 0;
Packit c4476c 
    unsigned char prior[31] = {0}, buf[31] = {0}, check[7];
Packit c4476c 
    int failures = 0, zero_words = 0;
Packit c4476c
Packit c4476c 
    int i;
Packit c4476c 
    for (i = 0; i < rounds; i++) {
Packit c4476c 
        size_t generated = 0;
Packit c4476c
Packit c4476c 
        int retry;
Packit c4476c 
        for (retry = 0; retry < max_retries; retry++) {
Packit c4476c 
            generated = rng(buf, sizeof(buf));
Packit c4476c 
            if (generated == sizeof(buf))
Packit c4476c 
                break;
Packit c4476c 
            failures++;
Packit c4476c 
        }
Packit c4476c
Packit c4476c 
        /*-
Packit c4476c 
         * Verify that we don't have too many unexpected runs of zeroes,
Packit c4476c 
         * implying that we might be accidentally using the 32-bit RDRAND
Packit c4476c 
         * instead of the 64-bit one on 64-bit systems.
Packit c4476c 
         */
Packit c4476c 
        size_t j;
Packit c4476c 
        for (j = 0; j < sizeof(buf) - 1; j++) {
Packit c4476c 
            if (buf[j] == 0 && buf[j+1] == 0) {
Packit c4476c 
                zero_words++;
Packit c4476c 
            }
Packit c4476c 
        }
Packit c4476c
Packit c4476c 
        if (!TEST_int_eq(generated, sizeof(buf)))
Packit c4476c 
            goto end;
Packit c4476c 
        if (!TEST_false(!memcmp(prior, buf, sizeof(buf))))
Packit c4476c 
            goto end;
Packit c4476c
Packit c4476c 
        /* Verify that the last 7 bytes of buf aren't all the same value */
Packit c4476c 
        unsigned char *tail = &buf[sizeof(buf) - sizeof(check)];
Packit c4476c 
        memset(check, tail[0], 7);
Packit c4476c 
        if (!TEST_false(!memcmp(check, tail, sizeof(check))))
Packit c4476c 
            goto end;
Packit c4476c
Packit c4476c 
        /* Save the result and make sure it's different next time */
Packit c4476c 
        memcpy(prior, buf, sizeof(buf));
Packit c4476c 
    }
Packit c4476c
Packit c4476c 
    if (!TEST_int_le(zero_words, max_zero_words))
Packit c4476c 
        goto end;
Packit c4476c
Packit c4476c 
    if (!TEST_int_ge(failures, min_failures))
Packit c4476c 
        goto end;
Packit c4476c
Packit c4476c 
    testresult = 1;
Packit c4476c 
end:
Packit c4476c 
    return testresult;
Packit c4476c 
}
Packit c4476c
Packit c4476c 
static int sanity_check_rdrand_bytes(void)
Packit c4476c 
{
Packit c4476c 
    return sanity_check_bytes(OPENSSL_ia32_rdrand_bytes, 1000, 0, 10, 10);
Packit c4476c 
}
Packit c4476c
Packit c4476c 
static int sanity_check_rdseed_bytes(void)
Packit c4476c 
{
Packit c4476c 
    /*-
Packit c4476c 
     * RDSEED may take many retries to succeed; note that this is effectively
Packit c4476c 
     * multiplied by the 8x retry loop in asm, and failure probabilities are
Packit c4476c 
     * increased by the fact that we need either 4 or 8 samples depending on
Packit c4476c 
     * the platform.
Packit c4476c 
     */
Packit c4476c 
    return sanity_check_bytes(OPENSSL_ia32_rdseed_bytes, 1000, 1, 10000, 10);
Packit c4476c 
}
Packit c4476c
Packit c4476c 
int setup_tests(void)
Packit c4476c 
{
Packit c4476c 
    OPENSSL_cpuid_setup();
Packit c4476c
Packit c4476c 
    int have_rdseed = (OPENSSL_ia32cap_P[2] & (1 << 18)) != 0;
Packit c4476c 
    int have_rdrand = (OPENSSL_ia32cap_P[1] & (1 << (62 - 32))) != 0;
Packit c4476c
Packit c4476c 
    if (have_rdrand) {
Packit c4476c 
        ADD_TEST(sanity_check_rdrand_bytes);
Packit c4476c 
    }
Packit c4476c
Packit c4476c 
    if (have_rdseed) {
Packit c4476c 
        ADD_TEST(sanity_check_rdseed_bytes);
Packit c4476c 
    }
Packit c4476c
Packit c4476c 
    return 1;
Packit c4476c 
}
Packit c4476c
Packit c4476c
Packit c4476c 
#else
Packit c4476c
Packit c4476c 
int setup_tests(void)
Packit c4476c 
{
Packit c4476c 
    return 1;
Packit c4476c 
}
Packit c4476c
Packit c4476c 
#endif

Powered by Pagure 5.13.3

SSH Hostkey/Fingerprint | Documentation