1998-04-21 02:43:54 +04:00
/*
Unix SMB / Netbios implementation .
Version 1.9 .
Functions to create reasonable random numbers for crypto use .
Copyright ( C ) Jeremy Allison 1998
This program is free software ; you can redistribute it and / or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation ; either version 2 of the License , or
( at your option ) any later version .
This program is distributed in the hope that it will be useful ,
but WITHOUT ANY WARRANTY ; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE . See the
GNU General Public License for more details .
You should have received a copy of the GNU General Public License
along with this program ; if not , write to the Free Software
Foundation , Inc . , 675 Mass Ave , Cambridge , MA 0213 9 , USA .
*/
# include "includes.h"
extern int DEBUGLEVEL ;
1998-04-21 03:57:29 +04:00
static uint32 counter = 0 ;
/****************************************************************
Try and get a seed by looking at the atimes of files in a given
directory . XOR them into the buf array .
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
static void do_dirrand ( char * name , unsigned char * buf , int buf_len )
{
void * dp = sys_opendir ( name ) ;
pstring fullname ;
int len_left ;
int fullname_len ;
char * pos ;
pstrcpy ( fullname , name ) ;
fullname_len = strlen ( fullname ) ;
if ( fullname_len + 2 > sizeof ( pstring ) )
return ;
if ( fullname [ fullname_len ] ! = ' / ' ) {
fullname [ fullname_len ] = ' / ' ;
fullname [ fullname_len + 1 ] = ' \0 ' ;
fullname_len = strlen ( fullname ) ;
}
len_left = sizeof ( pstring ) - fullname_len - 1 ;
pos = & fullname [ fullname_len ] ;
if ( dp ! = NULL ) {
char * p ;
while ( ( p = readdirname ( dp ) ) ) {
struct stat st ;
if ( strlen ( p ) < = len_left )
strcpy ( pos , p ) ;
if ( sys_stat ( fullname , & st ) = = 0 ) {
SIVAL ( buf , ( ( counter * 4 ) % ( buf_len - 4 ) ) ,
IVAL ( buf , ( ( counter * 4 ) % ( buf_len - 4 ) ) ) ^ st . st_atime ) ;
counter + + ;
DEBUG ( 10 , ( " do_dirrand: value from file %s. \n " , fullname ) ) ;
}
}
closedir ( dp ) ;
}
}
1998-04-21 02:43:54 +04:00
/**************************************************************
Try and get a good random number seed . Try a number of
different factors . Firstly , try / dev / random and try and
read from this . If this fails iterate through / tmp and
XOR all the file timestamps . If this fails then just use
a combination of pid and time of day ( yes I know this
sucks : - ) . Finally md4 the result .
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
static uint32 do_reseed ( void )
{
unsigned char md4_outbuf [ 16 ] ;
unsigned char md4_inbuf [ 40 ] ;
BOOL got_random = False ;
uint32 v1 , v2 , ret ;
int fd ;
struct timeval tval ;
1998-04-21 03:57:29 +04:00
pid_t mypid ;
1998-04-21 02:43:54 +04:00
memset ( md4_inbuf , ' \0 ' , sizeof ( md4_inbuf ) ) ;
fd = open ( " /dev/random " , O_RDONLY ) ;
if ( fd > = 0 ) {
/*
* We can use / dev / random !
*/
if ( read ( fd , md4_inbuf , 40 ) = = 40 ) {
got_random = True ;
DEBUG ( 10 , ( " do_reseed: got 40 bytes from /dev/random. \n " ) ) ;
}
close ( fd ) ;
}
if ( ! got_random ) {
/*
* / dev / random failed - try / tmp / for timestamps .
*/
1998-04-21 03:57:29 +04:00
do_dirrand ( " /tmp " , md4_inbuf , sizeof ( md4_inbuf ) ) ;
do_dirrand ( " /dev " , md4_inbuf , sizeof ( md4_inbuf ) ) ;
1998-04-21 02:43:54 +04:00
}
/*
* Finally add the counter , time of day , and pid .
*/
GetTimeOfDay ( & tval ) ;
1998-04-21 03:57:29 +04:00
mypid = getpid ( ) ;
v1 = ( counter + + ) + mypid + tval . tv_sec ;
v2 = ( counter + + ) * mypid + tval . tv_usec ;
1998-04-21 02:43:54 +04:00
SIVAL ( md4_inbuf , 32 , v1 ^ IVAL ( md4_inbuf , 32 ) ) ;
SIVAL ( md4_inbuf , 36 , v1 ^ IVAL ( md4_inbuf , 36 ) ) ;
mdfour ( md4_outbuf , md4_inbuf , sizeof ( md4_inbuf ) ) ;
/* XOR everything togther in blocks of 4 bytes. */
ret = IVAL ( md4_outbuf , 0 ) ;
ret ^ = IVAL ( md4_outbuf , 4 ) ;
ret ^ = IVAL ( md4_outbuf , 8 ) ;
ret ^ = IVAL ( md4_outbuf , 12 ) ;
DEBUG ( 10 , ( " do_reseed: returning seed %lu \n " , ret ) ) ;
return ret ;
}
/*******************************************************************
Interface to the ( hopefully ) good crypto random number generator .
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */
void generate_random_buffer ( unsigned char * out , int len , BOOL re_seed )
{
static BOOL done_reseed = False ;
unsigned char tmp_buf [ 64 ] ;
unsigned char md4_buf [ 16 ] ;
unsigned char * p ;
if ( ! done_reseed | | re_seed ) {
srandom ( do_reseed ( ) ) ;
done_reseed = True ;
}
/*
* Generate random numbers in chunks of 64 bytes ,
* then md4 them & copy to the output buffer .
*/
p = out ;
while ( len > 0 ) {
int i ;
int copy_len = len > 16 ? 16 : len ;
for ( i = 0 ; i < 16 ; i + + )
SIVAL ( tmp_buf , i * 4 , random ( ) ) ;
mdfour ( md4_buf , tmp_buf , sizeof ( tmp_buf ) ) ;
memcpy ( p , md4_buf , copy_len ) ;
p + = copy_len ;
len - = copy_len ;
}
}
