| blob | b9664583c7f04f1c35540c88b94819601662e333 |
1 /* ***** BEGIN LICENSE BLOCK *****
2 * Version: MPL 1.1/GPL 2.0/LGPL 2.1
3 *
4 * The contents of this file are subject to the Mozilla Public License Version
5 * 1.1 (the "License"); you may not use this file except in compliance with
6 * the License. You may obtain a copy of the License at
7 * http://www.mozilla.org/MPL/
8 *
9 * Software distributed under the License is distributed on an "AS IS" basis,
10 * WITHOUT WARRANTY OF ANY KIND, either express or implied. See the License
11 * for the specific language governing rights and limitations under the
12 * License.
13 *
14 * The Original Code is the Netscape security libraries.
15 *
16 * The Initial Developer of the Original Code is
17 * Netscape Communications Corporation.
18 * Portions created by the Initial Developer are Copyright (C) 1994-2000
19 * the Initial Developer. All Rights Reserved.
20 *
21 * Contributor(s):
22 *
23 * Alternatively, the contents of this file may be used under the terms of
24 * either the GNU General Public License Version 2 or later (the "GPL"), or
25 * the GNU Lesser General Public License Version 2.1 or later (the "LGPL"),
26 * in which case the provisions of the GPL or the LGPL are applicable instead
27 * of those above. If you wish to allow use of your version of this file only
28 * under the terms of either the GPL or the LGPL, and not to allow others to
29 * use your version of this file under the terms of the MPL, indicate your
30 * decision by deleting the provisions above and replace them with the notice
31 * and other provisions required by the GPL or the LGPL. If you do not delete
32 * the provisions above, a recipient may use your version of this file under
33 * the terms of any one of the MPL, the GPL or the LGPL.
34 *
35 * ***** END LICENSE BLOCK ***** */
37 #include <stdio.h>
38 #include <string.h>
39 #include <signal.h>
40 #include <unistd.h>
41 #include <errno.h>
42 #include <stdlib.h>
43 #include <sys/time.h>
44 #include <sys/wait.h>
45 #include <sys/stat.h>
53 /*
54 * When copying data to the buffer we want the least signicant bytes
55 * from the input since those bits are changing the fastest. The address
56 * of least significant byte depends upon whether we are running on
57 * a big-endian or little-endian machine.
58 *
59 * Does this mean the least signicant bytes are the most significant
60 * to us? :-)
61 */
64 {
66 int32 i;
73 }
76 /* big-endian case */
79 /* little-endian case */
81 }
83 }
85 #ifdef SOLARIS
87 #include <kstat.h>
91 /* Buffer entropy data, and feed it to the RNG, entropy_buf_len bytes at a time.
92 * Returns error if RNG_RandomUpdate fails. Also increments *total_fed
93 * by the number of bytes successfully buffered.
94 */
98 {
106 /* Buffer is full, time to feed it to the RNG. */
110 }
113 }
120 }
122 }
124 /* Feed kernel statistics structures and ks_data field to the RNG.
125 * Returns status as well as the number of bytes successfully fed to the RNG.
126 */
128 {
138 }
145 }
151 /* missing data from a single kstat shouldn't be fatal */
153 }
156 fed);
159 }
164 fed);
167 }
168 }
169 }
171 /* Buffer is not empty, time to feed it to the RNG */
173 }
177 }
181 }
183 }
185 #endif
187 #if defined(SCO) || defined(UNIXWARE) || defined(BSDI) || defined(FREEBSD) \
188 || defined(NETBSD) || defined(NTO) || defined(DARWIN) || defined(OPENBSD)
189 #include <sys/times.h>
191 #define getdtablesize() sysconf(_SC_OPEN_MAX)
193 static size_t
195 {
201 }
203 static void
205 {
208 /*
209 * Is this really necessary? Why not use rand48 or something?
210 */
219 }
220 #endif
222 #if defined(__sun)
223 #if defined(__svr4) || defined(SVR4)
224 #include <sys/systeminfo.h>
225 #include <sys/times.h>
226 #include <wait.h>
231 #define getdtablesize() sysconf(_SC_OPEN_MAX)
233 static void
235 {
242 }
246 }
250 }
251 }
253 static size_t
255 {
256 hrtime_t t;
260 }
262 }
267 static size_t
269 {
271 }
273 static void
275 {
278 /* This is not very good */
281 }
282 #endif
284 \f
285 #if defined(__hpux)
286 #include <sys/unistd.h>
288 #define getdtablesize() sysconf(_SC_OPEN_MAX)
290 #if defined(__ia64)
291 #include <ia64/sys/inline.h>
293 static size_t
295 {
296 PRUint64 t;
300 }
301 #else
302 static size_t
304 {
310 }
311 #endif
313 static void
315 {
318 /* This is not very good */
323 }
325 \f
326 #if defined(OSF1)
327 #include <sys/types.h>
328 #include <sys/sysinfo.h>
329 #include <sys/systeminfo.h>
330 #include <c_asm.h>
332 static void
334 {
342 }
346 }
350 }
351 }
353 /*
354 * Use the "get the cycle counter" instruction on the alpha.
355 * The low 32 bits completely turn over in less than a minute.
356 * The high 32 bits are some non-counter gunk that changes sometimes.
357 */
358 static size_t
360 {
365 }
368 \f
369 #if defined(_IBMR2)
370 static size_t
372 {
374 }
376 static void
378 {
379 /* XXX haven't found any yet! */
380 }
382 \f
383 #if defined(LINUX)
384 #include <sys/sysinfo.h>
386 static size_t
388 {
390 }
392 static void
394 {
398 }
399 }
402 #if defined(NCR)
404 #include <sys/utsname.h>
405 #include <sys/systeminfo.h>
407 #define getdtablesize() sysconf(_SC_OPEN_MAX)
409 static size_t
411 {
413 }
415 static void
417 {
424 }
428 }
432 }
433 }
437 \f
438 #if defined(sgi)
439 #include <fcntl.h>
440 #undef PRIVATE
441 #include <sys/mman.h>
442 #include <sys/syssgi.h>
443 #include <sys/immu.h>
444 #include <sys/systeminfo.h>
445 #include <sys/utsname.h>
446 #include <wait.h>
448 static void
450 {
457 }
458 #ifdef SGI_RDUBLK
462 }
467 }
471 }
475 }
479 }
480 }
483 {
492 #ifndef SGI_CYCLECNTR_SIZE
494 #endif
498 /* Don't keep trying if it didn't work */
500 }
502 /*
503 ** For SGI machines we can use the cycle counter, if it has one,
504 ** to generate some truly random numbers
505 */
515 }
522 }
525 /*
526 * The file 'mfd' is purposefully not closed.
527 */
532 /*
533 * We must be executing on a 6.0 or earlier system, since the
534 * SGI_CYCLECNTR_SIZE call is not supported.
535 *
536 * The only pre-6.1 platforms with 64-bit counters are
537 * IP19 and IP21 (Challenge, PowerChallenge, Onyx).
538 */
543 else
545 }
547 }
548 }
555 }
556 #endif
557 \f
558 #if defined(sony)
559 #include <sys/systeminfo.h>
561 #define getdtablesize() sysconf(_SC_OPEN_MAX)
563 static size_t
565 {
567 }
569 static void
571 {
578 }
582 }
586 }
587 }
590 #if defined(sinix)
591 #include <sys/systeminfo.h>
592 #include <sys/times.h>
597 #define getdtablesize() sysconf(_SC_OPEN_MAX)
599 static size_t
601 {
607 }
609 static void
611 {
618 }
622 }
626 }
627 }
630 #if defined(VMS)
631 #include <c_asm.h>
633 static void
635 {
638 /*
639 * This is copied from the SCO/UNIXWARE etc section. And like the comment
640 * there says, what's the point? This isn't random, it generates the same
641 * stuff every time its run!
642 */
651 }
653 /*
654 * Use the "get the cycle counter" instruction on the alpha.
655 * The low 32 bits completely turn over in less than a minute.
656 * The high 32 bits are some non-counter gunk that changes sometimes.
657 */
658 static size_t
660 {
665 }
669 #ifdef BEOS
670 #include <be/kernel/OS.h>
672 static size_t
674 {
679 }
681 static void
683 {
685 int32 val;
698 }
699 }
702 #if defined(nec_ews)
703 #include <sys/systeminfo.h>
705 #define getdtablesize() sysconf(_SC_OPEN_MAX)
707 static size_t
709 {
711 }
713 static void
715 {
722 }
726 }
730 }
731 }
733 \f
735 {
743 #if defined(__sun) && (defined(_svr4) || defined(SVR4)) || defined(sony)
745 #else
747 #endif
754 }
758 /*
759 * safe_popen is static to this module and we know what arguments it is
760 * called with. Note that this version only supports a single open child
761 * process at any time.
762 */
768 {
770 pid_t pid;
784 }
786 /* Setup signals so that SIGCHLD is ignored as we want to do waitpid */
803 /* dup write-side of pipe to stderr and stdout */
807 /*
808 * close the other file descriptors, except stdin which we
809 * try reassociating with /dev/null, first (bug 174993)
810 */
816 /* clean up environment in the child process */
821 /*
822 * The caller may have passed us a string that is in text
823 * space. It may be illegal to modify the string
824 */
826 /* format argv */
833 }
834 }
836 /* and away we go */
844 }
846 /* non-zero means there's a cmd running */
849 }
851 static int
853 {
854 pid_t pid;
863 /* yield the processor so the child gets some time to exit normally */
866 /* if the child hasn't exited, kill it -- we're done with its output */
868 ;
872 ;
873 }
875 /* Reset SIGCHLD signal hander before returning */
879 }
882 #if !defined(VMS)
884 #ifdef DARWIN
885 #include <crt_externs.h>
886 #endif
888 /* Fork netstat to collect its output by default. Do not unset this unless
889 * another source of entropy is available
890 */
891 #define DO_NETSTAT 1
894 {
900 #ifdef DARWIN
902 #else
904 #endif
905 #ifdef BEOS
912 0
913 };
914 #else
921 0
922 };
923 #endif
925 #if defined(BSDI)
927 #else
929 #endif
936 /*
937 * Pass the C environment and the addresses of the pointers to the
938 * hash function. This makes the random number function depend on the
939 * execution environment of the user and on the platform the program
940 * is running on.
941 */
946 cp++;
947 }
949 }
951 /* Give in system information */
954 }
957 /* grab some data from system's PRNG before any other files. */
960 /* If the user points us to a random file, pass it through the rng */
964 }
966 /* pass other files through */
970 /*
971 * Bug 100447: On BSD/OS 4.2 and 4.3, we have problem calling safe_popen
972 * in a pthreads environment. Therefore, we call safe_popen last and on
973 * BSD/OS we do not call safe_popen when we succeeded in getting data
974 * from /dev/urandom.
975 *
976 * Bug 174993: LINUX provides /dev/urandom, don't fork netstat
977 * if data has been gathered successfully
978 */
980 #if defined(BSDI) || defined(LINUX)
983 #endif
985 #ifdef SOLARIS
987 /*
988 * On Solaris, NSS may be initialized automatically from libldap in
989 * applications that are unaware of the use of NSS. safe_popen forks, and
990 * sometimes creates issues with some applications' pthread_atfork handlers.
991 * We always have /dev/urandom on Solaris 9 and above as an entropy source,
992 * and for Solaris 8 we have the libkstat interface, so we don't need to
993 * fork netstat.
994 */
996 #undef DO_NETSTAT
998 /* On Solaris 8, /dev/urandom isn't available, so we use libkstat. */
1002 }
1005 }
1006 #endif
1008 #ifdef DO_NETSTAT
1014 }
1015 #endif
1017 }
1018 #else
1020 {
1034 /*
1035 * Pass the C environment and the addresses of the pointers to the
1036 * hash function. This makes the random number function depend on the
1037 * execution environment of the user and on the platform the program
1038 * is running on.
1039 */
1043 cp++;
1044 }
1047 /* Give in system information */
1050 }
1053 /* If the user points us to a random file, pass it through the rng */
1057 }
1059 /*
1060 ** We need to generate at least 1024 bytes of seed data. Since we don't
1061 ** do the file stuff for VMS, and because the environ list is so short
1062 ** on VMS, we need to make sure we generate enough. So do another 1000
1063 ** bytes to be sure.
1064 */
1072 cp++;
1073 }
1074 }
1075 }
1076 #endif
1081 {
1089 /* suppress valgrind warnings due to holes in struct stat */
1106 /* after TOTAL_FILE_LIMIT has been reached, only read in first
1107 ** buffer of data from each subsequent file.
1108 */
1111 }
1113 }
1114 /*
1115 * Pass yet another snapshot of our highest resolution clock into
1116 * the hash function.
1117 */
1121 }
1124 {
1126 }
1129 {
1139 }
1147 }
1152 }
1154 }