| blob | d94080ad1e79f0e9b4fbb8410dc7f42d2dd59c42 |
1 /*
2 * Copyright (C) 2004 Internet Systems Consortium, Inc. ("ISC")
3 * Copyright (C) 2000-2002 Internet Software Consortium.
4 *
5 * Permission to use, copy, modify, and distribute this software for any
6 * purpose with or without fee is hereby granted, provided that the above
7 * copyright notice and this permission notice appear in all copies.
8 *
9 * THE SOFTWARE IS PROVIDED "AS IS" AND ISC DISCLAIMS ALL WARRANTIES WITH
10 * REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY
11 * AND FITNESS. IN NO EVENT SHALL ISC BE LIABLE FOR ANY SPECIAL, DIRECT,
12 * INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM
13 * LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE
14 * OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR
15 * PERFORMANCE OF THIS SOFTWARE.
16 */
18 /* $Id: entropy.c,v 1.60.2.4 2004/03/09 06:12:09 marka Exp $ */
20 /*
21 * This is the system depenedent part of the ISC entropy API.
22 */
24 #include <config.h>
27 #include <sys/types.h>
28 #include <sys/time.h>
30 #include <unistd.h>
32 #include <isc/platform.h>
33 #include <isc/strerror.h>
35 #ifdef ISC_PLATFORM_NEEDSYSSELECTH
36 #include <sys/select.h>
37 #endif
41 /*
42 * There is only one variable in the entropy data structures that is not
43 * system independent, but pulling the structure that uses it into this file
44 * ultimately means pulling several other independent structures here also to
45 * resolve their interdependencies. Thus only the problem variable's type
46 * is defined here.
47 */
48 #define FILESOURCE_HANDLE_TYPE int
52 static unsigned int
75 }
80 }
85 }
87 out:
89 }
91 /*
92 * Poll each source, trying to get data from it to stuff into the entropy
93 * pool.
94 */
95 static void
107 /*
108 * This logic is a little strange, so an explanation is in order.
109 *
110 * If needed is 0, it means we are being asked to "fill to whatever
111 * we think is best." This means that if we have at least a
112 * partially full pool (say, > 1/4th of the pool) we probably don't
113 * need to add anything.
114 *
115 * Also, we will check to see if the "pseudo" count is too high.
116 * If it is, try to mix in better data. Too high is currently
117 * defined as 1/4th of the pool.
118 *
119 * Next, if we are asked to add a specific bit of entropy, make
120 * certain that we will do so. Clamp how much we try to add to
121 * (DIGEST_SIZE * 8 < needed < POOLBITS - entropy).
122 *
123 * Note that if we are in a blocking mode, we will only try to
124 * get as much data as we need, not as much as we might want
125 * to build up.
126 */
138 }
140 /*
141 * In any case, clamp how much we need to how much we can add.
142 */
145 /*
146 * But wait! If we're not yet initialized, we need at least
147 * THRESHOLD_BITS
148 * of randomness.
149 */
153 /*
154 * Poll each file source to see if we can read anything useful from
155 * it. XXXMLG When where are multiple sources, we should keep a
156 * record of which one we last used so we can start from it (or the
157 * next one) to avoid letting some sources build up entropy while
158 * others are always drained.
159 */
167 }
169 again_file:
188 }
197 }
199 /*
200 * Here, if there are bits remaining to be had and we can block,
201 * check to see if we have a callback source. If so, call them.
202 */
219 }
221 /*
222 * Mark as initialized if we've added enough data.
223 */
226 }
228 static int
233 fd_set reads;
245 }
246 }
248 }
258 }
260 static void
263 }
265 /*
266 * Make a fd non-blocking
267 */
268 static isc_result_t
285 }
288 }
290 isc_result_t
293 isc_result_t ret;
307 }
316 }
318 /*
319 * From here down, no failures can occur.
320 */
330 /*
331 * Hook it into the entropy system.
332 */
339 closefd:
342 errout:
349 }