security-and-privacy/gnupg
security-and-privacy/gnupg
1
0
Fork 0
mirror of git://git.gnupg.org/gnupg.git synced 2025-01-24 15:17:02 +01:00
Code Activity

* random.c: Automagically detect the entrop gatherer when

Browse Source 
configure so.
* rndegd.c (rndegd_connect_socket): New.  Factored out from ..
(rndegd_gather_random): here and call it.
(do_read): Update the counter variables correctly.  This was not a
problem due to the way EGD works. Bug found by Christian Biere.
This commit is contained in:
Werner Koch 2002-08-30 16:33:55 +00:00
parent 262a8719a4
commit 0073d6865d
5 changed files with 128 additions and 68 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
cipher/ChangeLog
View File

@ -1,3 +1,12 @@
2002-08-30 Werner Koch <wk@gnupg.org>
* random.c: Automagically detect the entrop gatherer when
configure so.
* rndegd.c (rndegd_connect_socket): New. Factored out from ..
(rndegd_gather_random): here and call it.
(do_read): Update the counter variables correctly. This was not a
problem due to the way EGD works. Bug found by Christian Biere.
2002-08-20 Werner Koch <wk@gnupg.org> 2002-08-20 Werner Koch <wk@gnupg.org>
* primegen.c (generate_elg_prime): Return all factors for mode 1. * primegen.c (generate_elg_prime): Return all factors for mode 1.

2
cipher/cipher.c
View File

@ -32,7 +32,7 @@
/* We have support for a DUMMY encryption cipher which comes handy to /* We have support for a DUMMY encryption cipher which comes handy to
debug MDCs and similar things. Because this is a bit dangerous it debug MDCs and similar things. Because this is a bit dangerous it
is not enabled. */ is not enabled. */
/*#define ALLOW_DUMMY 1 */ #define ALLOW_DUMMY 1
#define MAX_BLOCKSIZE 16 #define MAX_BLOCKSIZE 16
#define TABLE_SIZE 14 #define TABLE_SIZE 14

1
cipher/rand-internal.h
View File

@ -24,6 +24,7 @@ int rndunix_gather_random (void (*add)(const void*, size_t, int),
int requester, size_t length, int level); int requester, size_t length, int level);
int rndlinux_gather_random (void (*add)(const void*, size_t, int), int rndlinux_gather_random (void (*add)(const void*, size_t, int),
int requester, size_t length, int level); int requester, size_t length, int level);
int rndegd_connect_socket (int nofail);
int rndegd_gather_random (void (*add)(const void*, size_t, int), int rndegd_gather_random (void (*add)(const void*, size_t, int),
int requester, size_t length, int level ); int requester, size_t length, int level );
int rndw32_gather_random (void (*add)(const void*, size_t, int), int rndw32_gather_random (void (*add)(const void*, size_t, int),

47
cipher/random.c
View File

@ -129,20 +129,49 @@ static int (*
getfnc_gather_random (void))(void (*)(const void*, size_t, int), int, getfnc_gather_random (void))(void (*)(const void*, size_t, int), int,
size_t, int) size_t, int)
{ {
#ifdef USE_RNDLINUX #ifdef USE_ALL_RANDOM_MODULES
static int (*fnc)(void (*)(const void*, size_t, int), int, size_t, int);
if (fnc)
return fnc;
# ifdef USE_RNDLINUX
if ( !access (NAME_OF_DEV_RANDOM, R_OK)
&& !access (NAME_OF_DEV_RANDOM, R_OK))
{
fnc = rndlinux_gather_random;
return fnc;
}
# endif
# ifdef USE_RNDEGD
if ( rndegd_connect_socket (1) != -1 )
{
fnc = rndegd_gather_random;
return fnc;
}
# endif
# ifdef USE_RNDUNIX
fnc = rndunix_gather_random;
return fnc;
# endif
log_fatal (_("no entropy gathering module detected\n"));
#else
# ifdef USE_RNDLINUX
return rndlinux_gather_random; return rndlinux_gather_random;
#endif # endif
#ifdef USE_RNDUNIX # ifdef USE_RNDUNIX
return rndunix_gather_random; return rndunix_gather_random;
#endif # endif
#ifdef USE_RNDEGD # ifdef USE_RNDEGD
return rndegd_gather_random; return rndegd_gather_random;
#endif # endif
#ifdef USE_RNDW32 # ifdef USE_RNDW32
return rndw32_gather_random; return rndw32_gather_random;
#endif # endif
#ifdef USE_RNDRISCOS # ifdef USE_RNDRISCOS
return rndriscos_gather_random; return rndriscos_gather_random;
# endif
#endif #endif
return NULL; return NULL;
} }

107
cipher/rndegd.c
View File

@ -20,7 +20,7 @@
#include <config.h> #include <config.h>
#ifdef USE_RNDEG #ifdef USE_RNDEGD
#include <stdio.h> #include <stdio.h>
#include <stdlib.h> #include <stdlib.h>
@ -45,6 +45,8 @@
#define offsetof(type, member) ((size_t) &((type *)0)->member) #define offsetof(type, member) ((size_t) &((type *)0)->member)
#endif #endif
static int egd_socket = -1;
static int static int
do_write( int fd, void *buf, size_t nbytes ) do_write( int fd, void *buf, size_t nbytes )
{ {
@ -69,63 +71,45 @@ do_read( int fd, void *buf, size_t nbytes )
{ {
int n, nread = 0; int n, nread = 0;
do { while (nbytes)
{
do { do {
n = read(fd, (char*)buf + nread, nbytes ); n = read(fd, (char*)buf + nread, nbytes );
} while( n == -1 && errno == EINTR ); } while( n == -1 && errno == EINTR );
if( n == -1 ) if( n == -1 )
return -1; return nread? nread:-1;
else if( n == 0 ) { else if( n == 0 ) {
/* EGD probably died. */ /* EGD probably died. */
errno = ECONNRESET; errno = ECONNRESET;
return -1; return -1;
} }
nread += n; nread += n;
} while( nread < nbytes ); nbytes -= n;
return nbytes; }
return nread;
} }
/* Connect to the EGD and return the file descriptor. Return -1 on
error. With NOFAIL set to true, silently fail and return the
/**************** error, otherwise print an error message and die. */
* Note: we always use the highest level.
* TO boost the performance we may want to add some
* additional code for level 1
*
* Using a level of 0 should never block and better add nothing
* to the pool. So this is just a dummy for EGD.
*/
int int
rndegd_gather_random( void (*add)(const void*, size_t, int), int requester, rndegd_connect_socket (int nofail)
size_t length, int level )
{ {
static int fd = -1; int fd;
int n;
byte buffer[256+2];
int nbytes;
int do_restart = 0;
if( !length )
return 0;
if( !level )
return 0;
restart:
if( do_restart ) {
if( fd != -1 ) {
close( fd );
fd = -1;
}
}
if( fd == -1 ) {
const char *bname = NULL; const char *bname = NULL;
char *name; char *name;
struct sockaddr_un addr; struct sockaddr_un addr;
int addr_len; int addr_len;
#ifdef EGD_SOCKET_NAME if (egd_socket != -1)
{
close (egd_socket);
egd_socket = -1;
}
#ifdef EGD_SOCKET_NAME
bname = EGD_SOCKET_NAME; bname = EGD_SOCKET_NAME;
#endif #endif
if ( !bname || !*bname ) if ( !bname || !*bname )
bname = "=entropy"; bname = "=entropy";
@ -140,18 +124,55 @@ rndegd_gather_random( void (*add)(const void*, size_t, int), int requester,
memset( &addr, 0, sizeof addr ); memset( &addr, 0, sizeof addr );
addr.sun_family = AF_UNIX; addr.sun_family = AF_UNIX;
strcpy( addr.sun_path, name ); strcpy( addr.sun_path, name );
addr_len = offsetof( struct sockaddr_un, sun_path ) addr_len = (offsetof( struct sockaddr_un, sun_path )
+ strlen( addr.sun_path ); + strlen( addr.sun_path ));
fd = socket(AF_UNIX, SOCK_STREAM, 0); fd = socket(AF_UNIX, SOCK_STREAM, 0);
if( fd == -1 ) if (fd == -1 && !nofail)
g10_log_fatal("can't create unix domain socket: %s\n", g10_log_fatal("can't create unix domain socket: %s\n",
strerror(errno) ); strerror(errno) );
if( connect( fd, (struct sockaddr*)&addr, addr_len) == -1 ) else if (connect (fd, (struct sockaddr*)&addr, addr_len) == -1)
{
if (!nofail)
g10_log_fatal("can't connect to `%s': %s\n", g10_log_fatal("can't connect to `%s': %s\n",
name, strerror(errno) ); name, strerror(errno) );
m_free(name); close (fd);
fd = -1;
} }
m_free(name);
if (fd != -1)
egd_socket = fd;
return fd;
}
/****************
* Note: we always use the highest level.
* TO boost the performance we may want to add some
* additional code for level 1
*
* Using a level of 0 should never block and better add nothing
* to the pool. So this is just a dummy for EGD.
*/
int
rndegd_gather_random( void (*add)(const void*, size_t, int), int requester,
size_t length, int level )
{
int fd = egd_socket;
int n;
byte buffer[256+2];
int nbytes;
int do_restart = 0;
if( !length )
return 0;
if( !level )
return 0;
restart:
if (fd == -1 || do_restart)
fd = rndegd_connect_socket (0);
do_restart = 0; do_restart = 0;
nbytes = length < 255? length : 255; nbytes = length < 255? length : 255;