Blame - Python/random.c - platform/external/python/cpython3

2012-02-20 19:54:16 +0100

[diff] [blame]

1

#include "Python.h"

2

#ifdef MS_WINDOWS

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

3

# include <windows.h>

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

4

#else

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

5

# include <fcntl.h>

6

# ifdef HAVE_SYS_STAT_H

7

# include <sys/stat.h>

8

# endif

Victor Stinner

2016-06-07 11:21:42 +0200

[diff] [blame]

9

# ifdef HAVE_LINUX_RANDOM_H

10

# include <linux/random.h>

11

# endif

Victor Stinner

2015-10-01 09:47:30 +0200

[diff] [blame]

12

# ifdef HAVE_GETRANDOM

13

# include <sys/random.h>

14

# elif defined(HAVE_GETRANDOM_SYSCALL)

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

15

# include <sys/syscall.h>

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

16

# endif

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

17

#endif

18

Benjamin Peterson

2012-02-21 11:08:50 -0500

[diff] [blame]

19

#ifdef Py_DEBUG

20

int _Py_HashSecret_Initialized = 0;

21

#else

22

static int _Py_HashSecret_Initialized = 0;

23

#endif

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

24

25

#ifdef MS_WINDOWS

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

26

static HCRYPTPROV hCryptProv = 0;

27

28

static int

29

win32_urandom_init(int raise)

30

{

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

31

/* Acquire context */

Martin v. Löwis

3f50bf6

2013-01-25 14:06:18 +0100

[diff] [blame]

32

if (!CryptAcquireContext(&hCryptProv, NULL, NULL,

33

PROV_RSA_FULL, CRYPT_VERIFYCONTEXT))

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

goto error;

return 0;

error:

if (raise)

PyErr_SetFromWindowsErr(0);

41

else

42

Py_FatalError("Failed to initialize Windows random API (CryptoGen)");

return -1;

}

/* Fill buffer with size pseudo-random bytes generated by the Windows CryptoGen

Victor Stinner

2014-12-21 01:16:38 +0100

[diff] [blame]

47

API. Return 0 on success, or raise an exception and return -1 on error. */

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

48

static int

49

win32_urandom(unsigned char *buffer, Py_ssize_t size, int raise)

{

Py_ssize_t chunk;

if (hCryptProv == 0)

{

if (win32_urandom_init(raise) == -1)

return -1;

}

while (size > 0)

{

chunk = size > INT_MAX ? INT_MAX : size;

Victor Stinner

0c08346

2013-11-15 23:26:25 +0100

[diff] [blame]

62

if (!CryptGenRandom(hCryptProv, (DWORD)chunk, buffer))

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

63

{

64

/* CryptGenRandom() failed */

65

if (raise)

66

PyErr_SetFromWindowsErr(0);

67

else

68

Py_FatalError("Failed to initialized the randomized hash "

69

"secret using CryptoGen)");

return -1;

}

buffer += chunk;

size -= chunk;

}

return 0;

}

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

77

Martin Panter

39b1025

2016-06-10 08:07:11 +0000

[diff] [blame]

78

/* Issue #25003: Don't use getentropy() on Solaris (available since

79

* Solaris 11.3), it is blocking whereas os.urandom() should not block. */

Victor Stinner

2015-10-01 09:47:30 +0200

[diff] [blame]

80

#elif defined(HAVE_GETENTROPY) && !defined(sun)

81

#define PY_GETENTROPY 1

82

Victor Stinner

2014-12-21 01:16:38 +0100

[diff] [blame]

83

/* Fill buffer with size pseudo-random bytes generated by getentropy().

84

Return 0 on success, or raise an exception and return -1 on error.

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

85

Victor Stinner

2014-12-21 01:16:38 +0100

[diff] [blame]

86

If fatal is nonzero, call Py_FatalError() instead of raising an exception

87

on error. */

88

static int

89

py_getentropy(unsigned char *buffer, Py_ssize_t size, int fatal)

90

{

91

while (size > 0) {

92

Py_ssize_t len = Py_MIN(size, 256);

Victor Stinner

9aa1331

2015-03-30 11:18:30 +0200

[diff] [blame]

int res;

if (!fatal) {

Py_BEGIN_ALLOW_THREADS

97

res = getentropy(buffer, len);

98

Py_END_ALLOW_THREADS

99

100

if (res < 0) {

Victor Stinner

2014-12-21 01:16:38 +0100

[diff] [blame]

101

PyErr_SetFromErrno(PyExc_OSError);

102

return -1;

103

}

104

}

Victor Stinner

9aa1331

2015-03-30 11:18:30 +0200

[diff] [blame]

105

else {

106

res = getentropy(buffer, len);

107

if (res < 0)

108

Py_FatalError("getentropy() failed");

109

}

110

Victor Stinner

2014-12-21 01:16:38 +0100

[diff] [blame]

buffer += len;

size -= len;

}

return 0;

}

Victor Stinner

2015-10-01 09:47:30 +0200

[diff] [blame]

117

#else

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

118

Victor Stinner

2015-10-01 09:47:30 +0200

[diff] [blame]

119

#if defined(HAVE_GETRANDOM) || defined(HAVE_GETRANDOM_SYSCALL)

120

#define PY_GETRANDOM 1

121

Victor Stinner

2016-09-20 22:26:18 +0200

[diff] [blame]

122

/* Call getrandom()

123

- Return 1 on success

Victor Stinner

2016-09-20 22:46:02 +0200

[diff] [blame]

124

- Return 0 if getrandom() syscall is not available (failed with ENOSYS or

125

EPERM) or if getrandom(GRND_NONBLOCK) failed with EAGAIN (system urandom

Victor Stinner

2016-09-20 22:26:18 +0200

[diff] [blame]

126

not initialized yet) and raise=0.

127

- Raise an exception (if raise is non-zero) and return -1 on error:

128

getrandom() failed with EINTR and the Python signal handler raised an

129

exception, or getrandom() failed with a different error. */

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

130

static int

131

py_getrandom(void *buffer, Py_ssize_t size, int raise)

132

{

Victor Stinner

2016-09-20 22:26:18 +0200

[diff] [blame]

133

/* Is getrandom() supported by the running kernel? Set to 0 if getrandom()

Victor Stinner

2016-09-20 22:46:02 +0200

[diff] [blame]

134

failed with ENOSYS or EPERM. Need Linux kernel 3.17 or newer, or Solaris

Victor Stinner

2016-09-20 22:26:18 +0200

[diff] [blame]

135

11.3 or newer */

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

136

static int getrandom_works = 1;

Victor Stinner

2016-06-07 11:21:42 +0200

[diff] [blame]

137

138

/* getrandom() on Linux will block if called before the kernel has

139

* initialized the urandom entropy pool. This will cause Python

140

* to hang on startup if called very early in the boot process -

141

* see https://bugs.python.org/issue26839. To avoid this, use the

142

* GRND_NONBLOCK flag. */

143

const int flags = GRND_NONBLOCK;

Victor Stinner

ec721f3

2016-06-16 23:53:47 +0200

[diff] [blame]

144

long n;

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

145

Victor Stinner

2016-09-20 22:26:18 +0200

[diff] [blame]

146

if (!getrandom_works) {

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

147

return 0;

Victor Stinner

2016-09-20 22:26:18 +0200

[diff] [blame]

148

}

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

149

150

while (0 < size) {

Victor Stinner

2016-04-12 22:28:49 +0200

[diff] [blame]

151

#ifdef sun

152

/* Issue #26735: On Solaris, getrandom() is limited to returning up

153

to 1024 bytes */

154

n = Py_MIN(size, 1024);

155

#else

Victor Stinner

ec721f3

2016-06-16 23:53:47 +0200

[diff] [blame]

156

n = Py_MIN(size, LONG_MAX);

Victor Stinner

2016-04-12 22:28:49 +0200

[diff] [blame]

157

#endif

Victor Stinner

2015-03-30 11:16:40 +0200

[diff] [blame]

158

Victor Stinner

2016-04-12 22:28:49 +0200

[diff] [blame]

159

errno = 0;

Victor Stinner

2015-10-01 09:47:30 +0200

[diff] [blame]

160

#ifdef HAVE_GETRANDOM

161

if (raise) {

162

Py_BEGIN_ALLOW_THREADS

Victor Stinner

2016-04-12 22:28:49 +0200

[diff] [blame]

163

n = getrandom(buffer, n, flags);

Victor Stinner

2015-10-01 09:47:30 +0200

[diff] [blame]

164

Py_END_ALLOW_THREADS

165

}

166

else {

Victor Stinner

2016-04-12 22:28:49 +0200

[diff] [blame]

167

n = getrandom(buffer, n, flags);

Victor Stinner

2015-10-01 09:47:30 +0200

[diff] [blame]

168

}

169

#else

170

/* On Linux, use the syscall() function because the GNU libc doesn't

171

* expose the Linux getrandom() syscall yet. See:

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

172

* https://sourceware.org/bugzilla/show_bug.cgi?id=17252 */

Victor Stinner

2015-03-30 11:16:40 +0200

[diff] [blame]

173

if (raise) {

174

Py_BEGIN_ALLOW_THREADS

Victor Stinner

2016-04-12 22:28:49 +0200

[diff] [blame]

175

n = syscall(SYS_getrandom, buffer, n, flags);

Victor Stinner

2015-03-30 11:16:40 +0200

[diff] [blame]

176

Py_END_ALLOW_THREADS

177

}

178

else {

Victor Stinner

2016-04-12 22:28:49 +0200

[diff] [blame]

179

n = syscall(SYS_getrandom, buffer, n, flags);

Victor Stinner

2015-03-30 11:16:40 +0200

[diff] [blame]

180

}

Victor Stinner

2015-10-01 09:47:30 +0200

[diff] [blame]

181

#endif

Victor Stinner

2015-03-30 11:16:40 +0200

[diff] [blame]

182

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

183

if (n < 0) {

Victor Stinner

2016-09-20 22:26:18 +0200

[diff] [blame]

184

/* ENOSYS: getrandom() syscall not supported by the kernel (but

Victor Stinner

2016-09-20 22:46:02 +0200

[diff] [blame]

185

* maybe supported by the host which built Python). EPERM:

186

* getrandom() syscall blocked by SECCOMP or something else. */

187

if (errno == ENOSYS || errno == EPERM) {

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

188

getrandom_works = 0;

189

return 0;

190

}

Victor Stinner

2016-06-07 11:21:42 +0200

[diff] [blame]

191

if (errno == EAGAIN) {

Victor Stinner

2016-09-20 22:26:18 +0200

[diff] [blame]

192

/* getrandom(GRND_NONBLOCK) fails with EAGAIN if the system

193

urandom is not initialiazed yet. In this case, fall back on

194

reading from /dev/urandom.

195

196

Note: In this case the data read will not be random so

197

should not be used for cryptographic purposes. Retaining

198

the existing semantics for practical purposes. */

Victor Stinner

2016-06-07 11:21:42 +0200

[diff] [blame]

199

getrandom_works = 0;

200

return 0;

201

}

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

202

203

if (errno == EINTR) {

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

204

if (PyErr_CheckSignals()) {

Victor Stinner

2016-09-20 22:26:18 +0200

[diff] [blame]

205

if (!raise) {

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

206

Py_FatalError("getrandom() interrupted by a signal");

Victor Stinner

2016-09-20 22:26:18 +0200

[diff] [blame]

207

}

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

208

return -1;

209

}

Victor Stinner

2016-09-20 22:26:18 +0200

[diff] [blame]

210

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

211

/* retry getrandom() */

continue;

}

Victor Stinner

2016-09-20 22:26:18 +0200

[diff] [blame]

215

if (raise) {

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

216

PyErr_SetFromErrno(PyExc_OSError);

Victor Stinner

2016-09-20 22:26:18 +0200

[diff] [blame]

217

}

218

else {

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

219

Py_FatalError("getrandom() failed");

Victor Stinner

2016-09-20 22:26:18 +0200

[diff] [blame]

220

}

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

return -1;

}

buffer += n;

size -= n;

}

return 1;

}

#endif

Antoine Pitrou

2014-04-26 14:33:03 +0200

[diff] [blame]

static struct {

int fd;

dev_t st_dev;

ino_t st_ino;

} urandom_cache = { -1 };

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

236

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

237

Victor Stinner

2016-09-20 22:26:18 +0200

[diff] [blame]

238

/* Read 'size' random bytes from py_getrandom(). Fall back on reading from

239

/dev/urandom if getrandom() is not available.

240

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

241

Call Py_FatalError() on error. */

242

static void

Christian Heimes

2013-11-20 11:46:18 +0100

[diff] [blame]

243

dev_urandom_noraise(unsigned char *buffer, Py_ssize_t size)

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

{

int fd;

Py_ssize_t n;

assert (0 < size);

Victor Stinner

2015-10-01 09:47:30 +0200

[diff] [blame]

250

#ifdef PY_GETRANDOM

Victor Stinner

2016-09-20 22:26:18 +0200

[diff] [blame]

251

if (py_getrandom(buffer, size, 0) == 1) {

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

252

return;

Victor Stinner

2016-09-20 22:26:18 +0200

[diff] [blame]

253

}

Victor Stinner

2016-09-20 22:46:02 +0200

[diff] [blame]

254

/* getrandom() failed with ENOSYS or EPERM,

Victor Stinner

2016-09-20 22:26:18 +0200

[diff] [blame]

255

fall back on reading /dev/urandom */

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

256

#endif

257

Victor Stinner

c7cd12d

2015-03-19 23:24:45 +0100

[diff] [blame]

258

fd = _Py_open_noraise("/dev/urandom", O_RDONLY);

Victor Stinner

2016-09-20 22:26:18 +0200

[diff] [blame]

259

if (fd < 0) {

Victor Stinner

c7cd12d

2015-03-19 23:24:45 +0100

[diff] [blame]

260

Py_FatalError("Failed to open /dev/urandom");

Victor Stinner

2016-09-20 22:26:18 +0200

[diff] [blame]

261

}

Victor Stinner

c7cd12d

2015-03-19 23:24:45 +0100

[diff] [blame]

262

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

while (0 < size)

{

do {

n = read(fd, buffer, (size_t)size);

267

} while (n < 0 && errno == EINTR);

Victor Stinner

2016-09-20 22:26:18 +0200

[diff] [blame]

268

269

if (n <= 0) {

270

/* read() failed or returned 0 bytes */

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

271

Py_FatalError("Failed to read bytes from /dev/urandom");

272

break;

273

}

274

buffer += n;

Victor Stinner

c72828b

2016-06-14 16:35:49 +0200

[diff] [blame]

275

size -= n;

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

}

close(fd);

}

Victor Stinner

2016-09-20 22:26:18 +0200

[diff] [blame]

280

/* Read 'size' random bytes from py_getrandom(). Fall back on reading from

281

/dev/urandom if getrandom() is not available.

282

283

Return 0 on success. Raise an exception and return -1 on error. */

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

284

static int

285

dev_urandom_python(char *buffer, Py_ssize_t size)

286

{

287

int fd;

288

Py_ssize_t n;

Steve Dower

f2f373f

2015-02-21 08:44:05 -0800

[diff] [blame]

289

struct _Py_stat_struct st;

Victor Stinner

2015-10-01 09:47:30 +0200

[diff] [blame]

290

#ifdef PY_GETRANDOM

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

291

int res;

292

#endif

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

if (size <= 0)

return 0;

Victor Stinner

2015-10-01 09:47:30 +0200

[diff] [blame]

297

#ifdef PY_GETRANDOM

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

298

res = py_getrandom(buffer, size, 1);

Victor Stinner

2016-09-20 22:26:18 +0200

[diff] [blame]

299

if (res < 0) {

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

300

return -1;

Victor Stinner

2016-09-20 22:26:18 +0200

[diff] [blame]

301

}

302

if (res == 1) {

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

303

return 0;

Victor Stinner

2016-09-20 22:26:18 +0200

[diff] [blame]

304

}

Victor Stinner

2016-09-20 22:46:02 +0200

[diff] [blame]

305

/* getrandom() failed with ENOSYS or EPERM,

Victor Stinner

2016-09-20 22:26:18 +0200

[diff] [blame]

306

fall back on reading /dev/urandom */

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

307

#endif

308

Antoine Pitrou

2014-04-26 14:33:03 +0200

[diff] [blame]

309

if (urandom_cache.fd >= 0) {

310

/* Does the fd point to the same thing as before? (issue #21207) */

Victor Stinner

e134a7f

2015-03-30 10:09:31 +0200

[diff] [blame]

311

if (_Py_fstat_noraise(urandom_cache.fd, &st)

Antoine Pitrou

2014-04-26 14:33:03 +0200

[diff] [blame]

312

|| st.st_dev != urandom_cache.st_dev

313

|| st.st_ino != urandom_cache.st_ino) {

314

/* Something changed: forget the cached fd (but don't close it,

315

since it probably points to something important for some

316

third-party code). */

317

urandom_cache.fd = -1;

318

}

319

}

320

if (urandom_cache.fd >= 0)

321

fd = urandom_cache.fd;

Antoine Pitrou

2013-08-31 00:26:02 +0200

[diff] [blame]

322

else {

Antoine Pitrou

2013-08-31 00:26:02 +0200

[diff] [blame]

323

fd = _Py_open("/dev/urandom", O_RDONLY);

Victor Stinner

a555cfc

2015-03-18 00:22:14 +0100

[diff] [blame]

324

if (fd < 0) {

Antoine Pitrou

2013-08-31 00:26:02 +0200

[diff] [blame]

325

if (errno == ENOENT || errno == ENXIO ||

326

errno == ENODEV || errno == EACCES)

327

PyErr_SetString(PyExc_NotImplementedError,

328

"/dev/urandom (or equivalent) not found");

Victor Stinner

a555cfc

2015-03-18 00:22:14 +0100

[diff] [blame]

329

/* otherwise, keep the OSError exception raised by _Py_open() */

Antoine Pitrou

2013-08-31 00:26:02 +0200

[diff] [blame]

330

return -1;

331

}

Antoine Pitrou

2014-04-26 14:33:03 +0200

[diff] [blame]

332

if (urandom_cache.fd >= 0) {

Antoine Pitrou

2013-08-31 00:26:02 +0200

[diff] [blame]

333

/* urandom_fd was initialized by another thread while we were

334

not holding the GIL, keep it. */

335

close(fd);

Antoine Pitrou

2014-04-26 14:33:03 +0200

[diff] [blame]

336

fd = urandom_cache.fd;

Antoine Pitrou

2013-08-31 00:26:02 +0200

[diff] [blame]

337

}

Antoine Pitrou

2014-04-26 14:33:03 +0200

[diff] [blame]

338

else {

Steve Dower

f2f373f

2015-02-21 08:44:05 -0800

[diff] [blame]

339

if (_Py_fstat(fd, &st)) {

Antoine Pitrou

2014-04-26 14:33:03 +0200

[diff] [blame]

close(fd);

return -1;

}

else {

urandom_cache.fd = fd;

345

urandom_cache.st_dev = st.st_dev;

346

urandom_cache.st_ino = st.st_ino;

347

}

348

}

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

349

}

350

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

351

do {

Victor Stinner

2015-03-19 23:36:33 +0100

[diff] [blame]

352

n = _Py_read(fd, buffer, (size_t)size);

Victor Stinner

2016-09-20 22:26:18 +0200

[diff] [blame]

353

if (n == -1) {

Victor Stinner

2015-03-19 23:36:33 +0100

[diff] [blame]

354

return -1;

Victor Stinner

2016-09-20 22:26:18 +0200

[diff] [blame]

355

}

Victor Stinner

2015-03-19 23:36:33 +0100

[diff] [blame]

356

if (n == 0) {

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

357

PyErr_Format(PyExc_RuntimeError,

Victor Stinner

2015-03-19 23:36:33 +0100

[diff] [blame]

358

"Failed to read %zi bytes from /dev/urandom",

size);

return -1;

}

buffer += n;

size -= n;

} while (0 < size);

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

367

return 0;

368

}

Antoine Pitrou

2013-08-31 00:26:02 +0200

[diff] [blame]

369

370

static void

371

dev_urandom_close(void)

372

{

Antoine Pitrou

2014-04-26 14:33:03 +0200

[diff] [blame]

373

if (urandom_cache.fd >= 0) {

374

close(urandom_cache.fd);

375

urandom_cache.fd = -1;

Antoine Pitrou

2013-08-31 00:26:02 +0200

[diff] [blame]

}

}

Victor Stinner

2015-10-01 09:47:30 +0200

[diff] [blame]

379

#endif

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

380

381

/* Fill buffer with pseudo-random bytes generated by a linear congruent

382

generator (LCG):

383

384

x(n+1) = (x(n) * 214013 + 2531011) % 2^32

385

386

Use bits 23..16 of x(n) to generate a byte. */

387

static void

388

lcg_urandom(unsigned int x0, unsigned char *buffer, size_t size)

{

size_t index;

unsigned int x;

x = x0;

for (index=0; index < size; index++) {

395

x *= 214013;

396

x += 2531011;

397

/* modulo 2 ^ (8 * sizeof(int)) */

398

buffer[index] = (x >> 16) & 0xff;

}

}

Georg Brandl

2013-10-06 18:43:19 +0200

[diff] [blame]

402

/* Fill buffer with size pseudo-random bytes from the operating system random

Serhiy Storchaka

56a6d85

2014-12-01 18:28:43 +0200

[diff] [blame]

403

number generator (RNG). It is suitable for most cryptographic purposes

Georg Brandl

c6a2c9b

2013-10-06 18:43:19 +0200

[diff] [blame]

404

except long living private keys for asymmetric encryption.

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

405

406

Return 0 on success, raise an exception and return -1 on error. */

407

int

408

_PyOS_URandom(void *buffer, Py_ssize_t size)

409

{

410

if (size < 0) {

411

PyErr_Format(PyExc_ValueError,

412

"negative argument not allowed");

return -1;

}

if (size == 0)

return 0;

#ifdef MS_WINDOWS

return win32_urandom((unsigned char *)buffer, size, 1);

Victor Stinner

2015-10-01 09:47:30 +0200

[diff] [blame]

420

#elif defined(PY_GETENTROPY)

Victor Stinner

2014-12-21 01:16:38 +0100

[diff] [blame]

421

return py_getentropy(buffer, size, 0);

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

422

#else

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

423

return dev_urandom_python((char*)buffer, size);

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

#endif

}

void

_PyRandom_Init(void)

{

char *env;

Christian Heimes

2013-11-20 11:46:18 +0100

[diff] [blame]

431

unsigned char *secret = (unsigned char *)&_Py_HashSecret.uc;

Benjamin Peterson

2012-02-21 11:08:50 -0500

[diff] [blame]

432

Py_ssize_t secret_size = sizeof(_Py_HashSecret_t);

Christian Heimes

2013-11-20 11:46:18 +0100

[diff] [blame]

433

assert(secret_size == sizeof(_Py_HashSecret.uc));

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

434

Benjamin Peterson

2012-02-21 11:08:50 -0500

[diff] [blame]

435

if (_Py_HashSecret_Initialized)

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

436

return;

Benjamin Peterson

2012-02-21 11:08:50 -0500

[diff] [blame]

437

_Py_HashSecret_Initialized = 1;

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

438

439

/*

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

440

Hash randomization is enabled. Generate a per-process secret,

441

using PYTHONHASHSEED if provided.

442

*/

443

444

env = Py_GETENV("PYTHONHASHSEED");

Georg Brandl

12897d7

2012-02-20 23:49:29 +0100

[diff] [blame]

445

if (env && *env != '\0' && strcmp(env, "random") != 0) {

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

446

char *endptr = env;

447

unsigned long seed;

448

seed = strtoul(env, &endptr, 10);

449

if (*endptr != '\0'

450

|| seed > 4294967295UL

451

|| (errno == ERANGE && seed == ULONG_MAX))

452

{

453

Py_FatalError("PYTHONHASHSEED must be \"random\" or an integer "

454

"in range [0; 4294967295]");

455

}

456

if (seed == 0) {

457

/* disable the randomized hash */

458

memset(secret, 0, secret_size);

459

}

460

else {

Christian Heimes

2013-11-20 11:46:18 +0100

[diff] [blame]

461

lcg_urandom(seed, secret, secret_size);

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

}

}

else {

#ifdef MS_WINDOWS

Christian Heimes

2013-11-20 11:46:18 +0100

[diff] [blame]

466

(void)win32_urandom(secret, secret_size, 0);

Victor Stinner

2015-10-01 09:47:30 +0200

[diff] [blame]

467

#elif defined(PY_GETENTROPY)

Victor Stinner

2014-12-21 01:16:38 +0100

[diff] [blame]

468

(void)py_getentropy(secret, secret_size, 1);

Christian Heimes

af01f66

2013-12-21 16:19:10 +0100

[diff] [blame]

469

#else

Christian Heimes

2013-11-20 11:46:18 +0100

[diff] [blame]

470

dev_urandom_noraise(secret, secret_size);

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

471

#endif

472

}

473

}

Antoine Pitrou

2013-08-31 00:26:02 +0200

[diff] [blame]

void

_PyRandom_Fini(void)

{

Victor Stinner

d50c3f3

2014-05-02 22:06:44 +0200

[diff] [blame]

478

#ifdef MS_WINDOWS

479

if (hCryptProv) {

Tim Golden

b8ac3e1

2014-05-06 13:29:45 +0100

[diff] [blame]

480

CryptReleaseContext(hCryptProv, 0);

Victor Stinner

d50c3f3

2014-05-02 22:06:44 +0200

[diff] [blame]

481

hCryptProv = 0;

482

}

Victor Stinner

2015-10-01 09:47:30 +0200

[diff] [blame]

483

#elif defined(PY_GETENTROPY)

Victor Stinner

2014-12-21 01:16:38 +0100

[diff] [blame]

484

/* nothing to clean */

Victor Stinner

d50c3f3

2014-05-02 22:06:44 +0200

[diff] [blame]

485

#else

Antoine Pitrou