Software `/` code `/` prosody

Annotate

util-src/crand.c @ 7915:e3d3ebd417f4

util.crand: Throw error if OpenSSLs RNG is not seeded

author	Kim Alvefur <zash@zash.se>
date	Sat, 25 Feb 2017 17:57:22 +0100
parent	7832:d02ef0ae94af
child	7918:12e5a54907b6

rev	line source
7187 3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	1 /* Prosody IM
7829 1fb477d19fdd util.crand: Update copyright header Kim Alvefur <zash@zash.se> parents: 7826 diff changeset	2 -- Copyright (C) 2008-2017 Matthew Wild
1fb477d19fdd util.crand: Update copyright header Kim Alvefur <zash@zash.se> parents: 7826 diff changeset	3 -- Copyright (C) 2008-2017 Waqas Hussain
1fb477d19fdd util.crand: Update copyright header Kim Alvefur <zash@zash.se> parents: 7826 diff changeset	4 -- Copyright (C) 2016-2017 Kim Alvefur
7187 3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	5 --
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	6 -- This project is MIT/X11 licensed. Please see the
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	7 -- COPYING file in the source package for more information.
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	8 --
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	9 */
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	10
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	11 /*
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	12 * crand.c
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	13 * C PRNG interface
7830 b9910a507250 util.crand: Add comment describing purpose of module Kim Alvefur <zash@zash.se> parents: 7829 diff changeset	14 *
b9910a507250 util.crand: Add comment describing purpose of module Kim Alvefur <zash@zash.se> parents: 7829 diff changeset	15 * The purpose of this module is to provide access to a PRNG in
b9910a507250 util.crand: Add comment describing purpose of module Kim Alvefur <zash@zash.se> parents: 7829 diff changeset	16 * environments without /dev/urandom
b9910a507250 util.crand: Add comment describing purpose of module Kim Alvefur <zash@zash.se> parents: 7829 diff changeset	17 *
b9910a507250 util.crand: Add comment describing purpose of module Kim Alvefur <zash@zash.se> parents: 7829 diff changeset	18 * Caution! This has not been extensively tested.
b9910a507250 util.crand: Add comment describing purpose of module Kim Alvefur <zash@zash.se> parents: 7829 diff changeset	19 *
7187 3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	20 */
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	21
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	22 #include "lualib.h"
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	23 #include "lauxlib.h"
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	24
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	25 #include <string.h>
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	26 #include <errno.h>
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	27
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	28 #if defined(WITH_GETRANDOM)
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	29 #include <unistd.h>
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	30 #include <sys/syscall.h>
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	31 #include <linux/random.h>
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	32
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	33 #ifndef SYS_getrandom
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	34 #error getrandom() requires Linux 3.17 or later
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	35 #endif
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	36
7831 201d0df6cce9 util.crand: Comment about getrandom Kim Alvefur <zash@zash.se> parents: 7830 diff changeset	37 /*
201d0df6cce9 util.crand: Comment about getrandom Kim Alvefur <zash@zash.se> parents: 7830 diff changeset	38 * This acts like a read from /dev/urandom with the exception that it
201d0df6cce9 util.crand: Comment about getrandom Kim Alvefur <zash@zash.se> parents: 7830 diff changeset	39 * does block if the entropy pool is not yet initialized.
201d0df6cce9 util.crand: Comment about getrandom Kim Alvefur <zash@zash.se> parents: 7830 diff changeset	40 */
7824 56552733742e util.crand: Let Lua handle allocation, freeing and error handling for buffer Kim Alvefur <zash@zash.se> parents: 7823 diff changeset	41 int getrandom(void *buf, size_t len, int flags) {
7187 3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	42 return syscall(SYS_getrandom, buf, len, flags);
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	43 }
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	44
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	45 #elif defined(WITH_ARC4RANDOM)
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	46 #include <stdlib.h>
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	47 #elif defined(WITH_OPENSSL)
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	48 #include <openssl/rand.h>
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	49 #else
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	50 #error util.crand compiled without a random source
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	51 #endif
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	52
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	53 int Lrandom(lua_State *L) {
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	54 int ret = 0;
7823 9b66ada1487c util.crand: Switch to luaL_checkinteger since checkint is deprecated in Lua 5.3 Kim Alvefur <zash@zash.se> parents: 7818 diff changeset	55 size_t len = (size_t)luaL_checkinteger(L, 1);
7824 56552733742e util.crand: Let Lua handle allocation, freeing and error handling for buffer Kim Alvefur <zash@zash.se> parents: 7823 diff changeset	56 void *buf = lua_newuserdata(L, len);
7187 3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	57
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	58 #if defined(WITH_GETRANDOM)
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	59 ret = getrandom(buf, len, 0);
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	60
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	61 if(ret < 0) {
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	62 lua_pushstring(L, strerror(errno));
7826 7702ce682427 util.crand: Raise hard errors Kim Alvefur <zash@zash.se> parents: 7825 diff changeset	63 return lua_error(L);
7187 3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	64 }
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	65
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	66 #elif defined(WITH_ARC4RANDOM)
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	67 arc4random_buf(buf, len);
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	68 ret = len;
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	69 #elif defined(WITH_OPENSSL)
7915 e3d3ebd417f4 util.crand: Throw error if OpenSSLs RNG is not seeded Kim Alvefur <zash@zash.se> parents: 7832 diff changeset	70 if(!RAND_status()) {
e3d3ebd417f4 util.crand: Throw error if OpenSSLs RNG is not seeded Kim Alvefur <zash@zash.se> parents: 7832 diff changeset	71 lua_pushliteral(L, "OpenSSL PRNG not seeded");
e3d3ebd417f4 util.crand: Throw error if OpenSSLs RNG is not seeded Kim Alvefur <zash@zash.se> parents: 7832 diff changeset	72 lua_error(L);
e3d3ebd417f4 util.crand: Throw error if OpenSSLs RNG is not seeded Kim Alvefur <zash@zash.se> parents: 7832 diff changeset	73 }
e3d3ebd417f4 util.crand: Throw error if OpenSSLs RNG is not seeded Kim Alvefur <zash@zash.se> parents: 7832 diff changeset	74
7187 3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	75 ret = RAND_bytes(buf, len);
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	76
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	77 if(ret == 1) {
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	78 ret = len;
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	79 } else {
7832 d02ef0ae94af util.crand: TODOs Kim Alvefur <zash@zash.se> parents: 7831 diff changeset	80 /* TODO ERR_get_error() */
7826 7702ce682427 util.crand: Raise hard errors Kim Alvefur <zash@zash.se> parents: 7825 diff changeset	81 lua_pushstring(L, "RAND_bytes() failed");
7702ce682427 util.crand: Raise hard errors Kim Alvefur <zash@zash.se> parents: 7825 diff changeset	82 return lua_error(L);
7187 3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	83 }
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	84
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	85 #endif
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	86
7824 56552733742e util.crand: Let Lua handle allocation, freeing and error handling for buffer Kim Alvefur <zash@zash.se> parents: 7823 diff changeset	87 lua_pushlstring(L, buf, ret);
7187 3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	88 return 1;
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	89 }
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	90
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	91 int luaopen_util_crand(lua_State *L) {
7818 54669df178c2 util-src: Make C modules assert that the Lua runtime matches what it was compiled for Kim Alvefur <zash@zash.se> parents: 7439 diff changeset	92 #if (LUA_VERSION_NUM > 501)
54669df178c2 util-src: Make C modules assert that the Lua runtime matches what it was compiled for Kim Alvefur <zash@zash.se> parents: 7439 diff changeset	93 luaL_checkversion(L);
54669df178c2 util-src: Make C modules assert that the Lua runtime matches what it was compiled for Kim Alvefur <zash@zash.se> parents: 7439 diff changeset	94 #endif
7915 e3d3ebd417f4 util.crand: Throw error if OpenSSLs RNG is not seeded Kim Alvefur <zash@zash.se> parents: 7832 diff changeset	95
7187 3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	96 lua_newtable(L);
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	97 lua_pushcfunction(L, Lrandom);
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	98 lua_setfield(L, -2, "bytes");
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	99
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	100 #if defined(WITH_GETRANDOM)
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	101 lua_pushstring(L, "Linux");
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	102 #elif defined(WITH_ARC4RANDOM)
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	103 lua_pushstring(L, "arc4random()");
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	104 #elif defined(WITH_OPENSSL)
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	105 lua_pushstring(L, "OpenSSL");
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	106 #endif
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	107 lua_setfield(L, -2, "_source");
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	108
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	109 return 1;
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	110 }
3d2c2f0809ee util.crand: C binding to one of OpenSSL, Linux getrandom() or OpenBSD arc4random() CSPRNG Kim Alvefur <zash@zash.se> parents: diff changeset	111

prosody

e3d3ebd417f4

util-src/crand.c

Software / code / prosody

Annotate

util-src/crand.c @ 7915:e3d3ebd417f4

Software `/` code `/` prosody