diff options
Diffstat (limited to 'src/nxt_random.c')
-rw-r--r-- | src/nxt_random.c | 206 |
1 files changed, 206 insertions, 0 deletions
diff --git a/src/nxt_random.c b/src/nxt_random.c new file mode 100644 index 00000000..9af40079 --- /dev/null +++ b/src/nxt_random.c @@ -0,0 +1,206 @@ + +/* + * Copyright (C) Igor Sysoev + * Copyright (C) NGINX, Inc. + */ + + +#include <nxt_main.h> + + +#if !(NXT_HAVE_ARC4RANDOM) + +/* + * The pseudorandom generator based on OpenBSD arc4random. Although it is + * usually stated that arc4random uses RC4 pseudorandom generation algorithm + * they are actually different in nxt_random_add(). + */ + + +#define NXT_RANDOM_KEY_SIZE 128 + + +nxt_inline void nxt_random_start_schedule(nxt_random_t *r); +static void nxt_random_stir(nxt_random_t *r); +static void nxt_random_add(nxt_random_t *r, const u_char *key, uint32_t len); +nxt_inline uint8_t nxt_random_byte(nxt_random_t *r); + + +void +nxt_random_init(nxt_random_t *r) +{ + nxt_random_start_schedule(r); + + nxt_random_stir(r); +} + + +nxt_inline void +nxt_random_start_schedule(nxt_random_t *r) +{ + nxt_uint_t i; + + r->i = 0; + r->j = 0; + + for (i = 0; i < 256; i++) { + r->s[i] = i; + } +} + + +static void +nxt_random_stir(nxt_random_t *r) +{ + int fd; + ssize_t n; + struct timeval tv; + union { + uint32_t value[3]; + u_char bytes[NXT_RANDOM_KEY_SIZE]; + } key; + + n = 0; + +#if (NXT_HAVE_GETRANDOM) + + /* Linux 3.17 getrandom(). */ + + n = getrandom(key, NXT_RANDOM_KEY_SIZE, 0); + +#endif + + if (n != NXT_RANDOM_KEY_SIZE) { + fd = open("/dev/urandom", O_RDONLY); + + if (fd >= 0) { + n = read(fd, &key, NXT_RANDOM_KEY_SIZE); + (void) close(fd); + } + } + + if (n != NXT_RANDOM_KEY_SIZE) { + (void) gettimeofday(&tv, NULL); + + /* XOR with stack garbage. */ + + key.value[0] ^= tv.tv_usec; + key.value[1] ^= tv.tv_sec; + key.value[2] ^= nxt_pid; + } + + nxt_random_add(r, key.bytes, NXT_RANDOM_KEY_SIZE); + + /* Drop the first 3072 bytes. */ + for (n = 3072; n != 0; n--) { + (void) nxt_random_byte(r); + } + + /* Stir again after 1,600,000 bytes. */ + r->count = 400000; +} + + +static void +nxt_random_add(nxt_random_t *r, const u_char *key, uint32_t len) +{ + uint8_t val; + uint32_t n; + + for (n = 0; n < 256; n++) { + val = r->s[r->i]; + r->j += val + key[n % len]; + + r->s[r->i] = r->s[r->j]; + r->s[r->j] = val; + + r->i++; + } + + /* This index is not decremented in RC4 algorithm. */ + r->i--; + + r->j = r->i; +} + + +uint32_t +nxt_random(nxt_random_t *r) +{ + uint32_t val; + + r->count--; + + if (r->count <= 0) { + nxt_random_stir(r); + } + + val = nxt_random_byte(r) << 24; + val |= nxt_random_byte(r) << 16; + val |= nxt_random_byte(r) << 8; + val |= nxt_random_byte(r); + + return val; +} + + +nxt_inline uint8_t +nxt_random_byte(nxt_random_t *r) +{ + uint8_t si, sj; + + r->i++; + si = r->s[r->i]; + r->j += si; + + sj = r->s[r->j]; + r->s[r->i] = sj; + r->s[r->j] = si; + + si += sj; + + return r->s[si]; +} + + +#if (NXT_LIB_UNIT_TEST) + +nxt_int_t +nxt_random_unit_test(nxt_thread_t *thr) +{ + nxt_uint_t n; + nxt_random_t r; + + nxt_random_start_schedule(&r); + + r.count = 400000; + + nxt_random_add(&r, (u_char *) "arc4random", sizeof("arc4random") - 1); + + /* + * Test arc4random() numbers. + * RC4 pseudorandom numbers would be 0x4642AFC3 and 0xBAF0FFF0. + */ + + if (nxt_random(&r) == 0xD6270B27) { + + for (n = 100000; n != 0; n--) { + (void) nxt_random(&r); + } + + if (nxt_random(&r) == 0x6FCAE186) { + nxt_log_error(NXT_LOG_NOTICE, thr->log, + "arc4random unit test passed"); + + return NXT_OK; + } + } + + nxt_log_error(NXT_LOG_NOTICE, thr->log, "arc4random unit test failed"); + + return NXT_ERROR; +} + +#endif + +#endif |