Blame - Python/random.c - platform/external/python/cpython3

2012-02-20 19:54:16 +0100

[diff] [blame]

1

#include "Python.h"

2

#ifdef MS_WINDOWS

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

3

# include <windows.h>

Martin Panter

d2f8747

2016-07-29 04:00:44 +0000

[diff] [blame]

4

/* All sample MSDN wincrypt programs include the header below. It is at least

5

* required with Min GW. */

6

# include <wincrypt.h>

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

7

#else

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

8

# include <fcntl.h>

9

# ifdef HAVE_SYS_STAT_H

10

# include <sys/stat.h>

11

# endif

Victor Stinner

dddf484

2016-06-07 11:21:42 +0200

[diff] [blame]

12

# ifdef HAVE_LINUX_RANDOM_H

13

# include <linux/random.h>

14

# endif

Ned Deily

7ae4112

2016-11-12 16:35:48 -0500

[diff] [blame]

15

# if defined(HAVE_GETRANDOM) || defined(HAVE_GETENTROPY)

Victor Stinner

2015-10-01 09:47:30 +0200

[diff] [blame]

16

# include <sys/random.h>

Ned Deily

7ae4112

2016-11-12 16:35:48 -0500

[diff] [blame]

17

# endif

18

# if !defined(HAVE_GETRANDOM) && defined(HAVE_GETRANDOM_SYSCALL)

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

19

# include <sys/syscall.h>

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

20

# endif

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

21

#endif

22

Benjamin Peterson

2012-02-21 11:08:50 -0500

[diff] [blame]

23

#ifdef Py_DEBUG

24

int _Py_HashSecret_Initialized = 0;

25

#else

26

static int _Py_HashSecret_Initialized = 0;

27

#endif

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

28

29

#ifdef MS_WINDOWS

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

30

static HCRYPTPROV hCryptProv = 0;

31

32

static int

33

win32_urandom_init(int raise)

34

{

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

35

/* Acquire context */

Martin v. Löwis

3f50bf6

2013-01-25 14:06:18 +0100

[diff] [blame]

36

if (!CryptAcquireContext(&hCryptProv, NULL, NULL,

37

PROV_RSA_FULL, CRYPT_VERIFYCONTEXT))

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

goto error;

return 0;

error:

Victor Stinner

2016-08-16 15:23:58 +0200

[diff] [blame]

43

if (raise) {

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

44

PyErr_SetFromWindowsErr(0);

Victor Stinner

2016-08-16 15:23:58 +0200

[diff] [blame]

45

}

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

return -1;

}

/* Fill buffer with size pseudo-random bytes generated by the Windows CryptoGen

Victor Stinner

2014-12-21 01:16:38 +0100

[diff] [blame]

50

API. Return 0 on success, or raise an exception and return -1 on error. */

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

51

static int

52

win32_urandom(unsigned char *buffer, Py_ssize_t size, int raise)

{

Py_ssize_t chunk;

if (hCryptProv == 0)

{

Victor Stinner

2016-08-16 15:23:58 +0200

[diff] [blame]

58

if (win32_urandom_init(raise) == -1) {

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

59

return -1;

Victor Stinner

2016-08-16 15:23:58 +0200

[diff] [blame]

60

}

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

}

while (size > 0)

{

chunk = size > INT_MAX ? INT_MAX : size;

Victor Stinner

0c08346

2013-11-15 23:26:25 +0100

[diff] [blame]

66

if (!CryptGenRandom(hCryptProv, (DWORD)chunk, buffer))

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

67

{

68

/* CryptGenRandom() failed */

Victor Stinner

2016-08-16 15:23:58 +0200

[diff] [blame]

69

if (raise) {

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

70

PyErr_SetFromWindowsErr(0);

Victor Stinner

2016-08-16 15:23:58 +0200

[diff] [blame]

71

}

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

return -1;

}

buffer += chunk;

size -= chunk;

}

return 0;

}

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

79

Martin Panter

39b1025

2016-06-10 08:07:11 +0000

[diff] [blame]

80

/* Issue #25003: Don't use getentropy() on Solaris (available since

Victor Stinner

2016-09-06 16:33:52 -0700

[diff] [blame]

81

* Solaris 11.3), it is blocking whereas os.urandom() should not block. */

Victor Stinner

2015-10-01 09:47:30 +0200

[diff] [blame]

82

#elif defined(HAVE_GETENTROPY) && !defined(sun)

83

#define PY_GETENTROPY 1

84

Victor Stinner

2014-12-21 01:16:38 +0100

[diff] [blame]

85

/* Fill buffer with size pseudo-random bytes generated by getentropy().

86

Return 0 on success, or raise an exception and return -1 on error.

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

87

Victor Stinner

2016-08-16 15:23:58 +0200

[diff] [blame]

88

If raise is zero, don't raise an exception on error. */

Victor Stinner

2014-12-21 01:16:38 +0100

[diff] [blame]

89

static int

Victor Stinner

2016-08-16 15:23:58 +0200

[diff] [blame]

90

py_getentropy(char *buffer, Py_ssize_t size, int raise)

Victor Stinner

2014-12-21 01:16:38 +0100

[diff] [blame]

91

{

92

while (size > 0) {

93

Py_ssize_t len = Py_MIN(size, 256);

Victor Stinner

2015-03-30 11:18:30 +0200

[diff] [blame]

94

int res;

95

Victor Stinner

2016-08-16 15:23:58 +0200

[diff] [blame]

96

if (raise) {

Victor Stinner

2015-03-30 11:18:30 +0200

[diff] [blame]

97

Py_BEGIN_ALLOW_THREADS

98

res = getentropy(buffer, len);

99

Py_END_ALLOW_THREADS

Victor Stinner

2014-12-21 01:16:38 +0100

[diff] [blame]

100

}

Victor Stinner

2015-03-30 11:18:30 +0200

[diff] [blame]

101

else {

102

res = getentropy(buffer, len);

Victor Stinner

2016-08-16 15:23:58 +0200

[diff] [blame]

}

if (res < 0) {

if (raise) {

PyErr_SetFromErrno(PyExc_OSError);

108

}

109

return -1;

Victor Stinner

2015-03-30 11:18:30 +0200

[diff] [blame]

110

}

111

Victor Stinner

2014-12-21 01:16:38 +0100

[diff] [blame]

buffer += len;

size -= len;

}

return 0;

}

Victor Stinner

2015-10-01 09:47:30 +0200

[diff] [blame]

118

#else

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

119

Victor Stinner

2015-10-01 09:47:30 +0200

[diff] [blame]

120

#if defined(HAVE_GETRANDOM) || defined(HAVE_GETRANDOM_SYSCALL)

121

#define PY_GETRANDOM 1

122

Victor Stinner

2016-08-16 18:46:38 +0200

[diff] [blame]

123

/* Call getrandom()

124

- Return 1 on success

Victor Stinner

2016-09-20 22:46:02 +0200

[diff] [blame]

125

- Return 0 if getrandom() syscall is not available (failed with ENOSYS or

126

EPERM) or if getrandom(GRND_NONBLOCK) failed with EAGAIN (system urandom

Victor Stinner

2016-09-20 22:26:18 +0200

[diff] [blame]

127

not initialized yet) and raise=0.

Victor Stinner

2016-08-16 18:46:38 +0200

[diff] [blame]

128

- Raise an exception (if raise is non-zero) and return -1 on error:

129

getrandom() failed with EINTR and the Python signal handler raised an

130

exception, or getrandom() failed with a different error. */

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

131

static int

Victor Stinner

2016-09-06 16:33:52 -0700

[diff] [blame]

132

py_getrandom(void *buffer, Py_ssize_t size, int blocking, int raise)

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

133

{

Victor Stinner

2016-09-06 16:33:52 -0700

[diff] [blame]

134

/* Is getrandom() supported by the running kernel? Set to 0 if getrandom()

Victor Stinner

2016-09-20 22:46:02 +0200

[diff] [blame]

135

failed with ENOSYS or EPERM. Need Linux kernel 3.17 or newer, or Solaris

Victor Stinner

2016-09-20 22:26:18 +0200

[diff] [blame]

136

11.3 or newer */

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

137

static int getrandom_works = 1;

Victor Stinner

2016-09-06 16:33:52 -0700

[diff] [blame]

138

int flags;

Victor Stinner

2016-06-08 10:16:50 +0200

[diff] [blame]

139

char *dest;

Victor Stinner

ec721f3

2016-06-16 23:53:47 +0200

[diff] [blame]

140

long n;

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

141

Victor Stinner

2016-08-16 18:46:38 +0200

[diff] [blame]

142

if (!getrandom_works) {

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

143

return 0;

Victor Stinner

2016-08-16 18:46:38 +0200

[diff] [blame]

144

}

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

145

Victor Stinner

2016-09-06 16:33:52 -0700

[diff] [blame]

146

flags = blocking ? 0 : GRND_NONBLOCK;

Victor Stinner

2016-06-08 10:16:50 +0200

[diff] [blame]

147

dest = buffer;

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

148

while (0 < size) {

Victor Stinner

9d24271

2016-04-12 22:28:49 +0200

[diff] [blame]

149

#ifdef sun

150

/* Issue #26735: On Solaris, getrandom() is limited to returning up

151

to 1024 bytes */

152

n = Py_MIN(size, 1024);

153

#else

Victor Stinner

ec721f3

2016-06-16 23:53:47 +0200

[diff] [blame]

154

n = Py_MIN(size, LONG_MAX);

Victor Stinner

9d24271

2016-04-12 22:28:49 +0200

[diff] [blame]

155

#endif

Victor Stinner

2015-03-30 11:16:40 +0200

[diff] [blame]

156

Victor Stinner

9d24271

2016-04-12 22:28:49 +0200

[diff] [blame]

157

errno = 0;

Victor Stinner

2015-10-01 09:47:30 +0200

[diff] [blame]

158

#ifdef HAVE_GETRANDOM

159

if (raise) {

160

Py_BEGIN_ALLOW_THREADS

Victor Stinner

2016-06-08 10:16:50 +0200

[diff] [blame]

161

n = getrandom(dest, n, flags);

Victor Stinner

2015-10-01 09:47:30 +0200

[diff] [blame]

162

Py_END_ALLOW_THREADS

163

}

164

else {

Victor Stinner

2016-06-08 10:16:50 +0200

[diff] [blame]

165

n = getrandom(dest, n, flags);

Victor Stinner

2015-10-01 09:47:30 +0200

[diff] [blame]

166

}

167

#else

168

/* On Linux, use the syscall() function because the GNU libc doesn't

Victor Stinner

2016-08-16 18:46:38 +0200

[diff] [blame]

169

expose the Linux getrandom() syscall yet. See:

170

https://sourceware.org/bugzilla/show_bug.cgi?id=17252 */

Victor Stinner

2015-03-30 11:16:40 +0200

[diff] [blame]

171

if (raise) {

172

Py_BEGIN_ALLOW_THREADS

Victor Stinner

2016-06-08 10:16:50 +0200

[diff] [blame]

173

n = syscall(SYS_getrandom, dest, n, flags);

Victor Stinner

2015-03-30 11:16:40 +0200

[diff] [blame]

174

Py_END_ALLOW_THREADS

175

}

176

else {

Victor Stinner

2016-06-08 10:16:50 +0200

[diff] [blame]

177

n = syscall(SYS_getrandom, dest, n, flags);

Victor Stinner

2015-03-30 11:16:40 +0200

[diff] [blame]

178

}

Victor Stinner

2015-10-01 09:47:30 +0200

[diff] [blame]

179

#endif

Victor Stinner

2015-03-30 11:16:40 +0200

[diff] [blame]

180

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

181

if (n < 0) {

Victor Stinner

2016-09-20 22:26:18 +0200

[diff] [blame]

182

/* ENOSYS: getrandom() syscall not supported by the kernel (but

Victor Stinner

2016-09-20 22:46:02 +0200

[diff] [blame]

183

* maybe supported by the host which built Python). EPERM:

184

* getrandom() syscall blocked by SECCOMP or something else. */

185

if (errno == ENOSYS || errno == EPERM) {

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

186

getrandom_works = 0;

187

return 0;

188

}

Victor Stinner

2016-08-16 18:46:38 +0200

[diff] [blame]

189

Victor Stinner

2016-09-06 16:33:52 -0700

[diff] [blame]

190

/* getrandom(GRND_NONBLOCK) fails with EAGAIN if the system urandom

191

is not initialiazed yet. For _PyRandom_Init(), we ignore their

192

error and fall back on reading /dev/urandom which never blocks,

193

even if the system urandom is not initialized yet. */

194

if (errno == EAGAIN && !raise && !blocking) {

Victor Stinner

dddf484

2016-06-07 11:21:42 +0200

[diff] [blame]

195

return 0;

196

}

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

197

198

if (errno == EINTR) {

Victor Stinner

cecdd96

2016-08-16 15:19:09 +0200

[diff] [blame]

199

if (raise) {

200

if (PyErr_CheckSignals()) {

201

return -1;

202

}

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

203

}

Victor Stinner

cecdd96

2016-08-16 15:19:09 +0200

[diff] [blame]

204

205

/* retry getrandom() if it was interrupted by a signal */

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

continue;

}

Victor Stinner

2016-08-16 15:23:58 +0200

[diff] [blame]

209

if (raise) {

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

210

PyErr_SetFromErrno(PyExc_OSError);

Victor Stinner

2016-08-16 15:23:58 +0200

[diff] [blame]

211

}

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

return -1;

}

Victor Stinner

2016-06-08 10:16:50 +0200

[diff] [blame]

215

dest += n;

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

size -= n;

}

return 1;

}

#endif

Antoine Pitrou

2014-04-26 14:33:03 +0200

[diff] [blame]

static struct {

int fd;

dev_t st_dev;

ino_t st_ino;

} urandom_cache = { -1 };

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

227

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

228

Victor Stinner

2016-09-06 16:33:52 -0700

[diff] [blame]

229

/* Read 'size' random bytes from py_getrandom(). Fall back on reading from

Victor Stinner

2016-08-16 18:46:38 +0200

[diff] [blame]

230

/dev/urandom if getrandom() is not available.

231

232

Return 0 on success. Raise an exception (if raise is non-zero) and return -1

233

on error. */

Victor Stinner

2016-08-16 15:23:58 +0200

[diff] [blame]

234

static int

Victor Stinner

2016-09-06 16:33:52 -0700

[diff] [blame]

235

dev_urandom(char *buffer, Py_ssize_t size, int blocking, int raise)

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

236

{

237

int fd;

238

Py_ssize_t n;

Victor Stinner

2015-10-01 09:47:30 +0200

[diff] [blame]

239

#ifdef PY_GETRANDOM

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

240

int res;

241

#endif

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

242

Victor Stinner

2016-08-16 18:46:38 +0200

[diff] [blame]

243

assert(size > 0);

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

244

Victor Stinner

2015-10-01 09:47:30 +0200

[diff] [blame]

245

#ifdef PY_GETRANDOM

Victor Stinner

2016-09-06 16:33:52 -0700

[diff] [blame]

246

res = py_getrandom(buffer, size, blocking, raise);

Victor Stinner

2016-08-16 18:46:38 +0200

[diff] [blame]

247

if (res < 0) {

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

248

return -1;

Victor Stinner

2016-08-16 18:46:38 +0200

[diff] [blame]

249

}

250

if (res == 1) {

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

251

return 0;

Victor Stinner

2016-08-16 18:46:38 +0200

[diff] [blame]

252

}

Victor Stinner

2016-09-20 22:46:02 +0200

[diff] [blame]

253

/* getrandom() failed with ENOSYS or EPERM,

Victor Stinner

2016-09-20 22:26:18 +0200

[diff] [blame]

254

fall back on reading /dev/urandom */

Victor Stinner

2015-03-18 14:39:33 +0100

[diff] [blame]

255

#endif

256

Victor Stinner

2016-08-16 18:46:38 +0200

[diff] [blame]

257

258

if (raise) {

259

struct _Py_stat_struct st;

260

Antoine Pitrou

2014-04-26 14:33:03 +0200

[diff] [blame]

261

if (urandom_cache.fd >= 0) {

Victor Stinner

2016-08-16 18:46:38 +0200

[diff] [blame]

262

/* Does the fd point to the same thing as before? (issue #21207) */

263

if (_Py_fstat_noraise(urandom_cache.fd, &st)

264

|| st.st_dev != urandom_cache.st_dev

265

|| st.st_ino != urandom_cache.st_ino) {

266

/* Something changed: forget the cached fd (but don't close it,

267

since it probably points to something important for some

268

third-party code). */

269

urandom_cache.fd = -1;

270

}

Antoine Pitrou

2013-08-31 00:26:02 +0200

[diff] [blame]

271

}

Victor Stinner

2016-08-16 18:46:38 +0200

[diff] [blame]

272

if (urandom_cache.fd >= 0)

273

fd = urandom_cache.fd;

Antoine Pitrou

2014-04-26 14:33:03 +0200

[diff] [blame]

274

else {

Victor Stinner

2016-08-16 18:46:38 +0200

[diff] [blame]

275

fd = _Py_open("/dev/urandom", O_RDONLY);

276

if (fd < 0) {

277

if (errno == ENOENT || errno == ENXIO ||

278

errno == ENODEV || errno == EACCES)

279

PyErr_SetString(PyExc_NotImplementedError,

280

"/dev/urandom (or equivalent) not found");

281

/* otherwise, keep the OSError exception raised by _Py_open() */

Antoine Pitrou

2014-04-26 14:33:03 +0200

[diff] [blame]

282

return -1;

283

}

Victor Stinner

2016-08-16 18:46:38 +0200

[diff] [blame]

284

if (urandom_cache.fd >= 0) {

285

/* urandom_fd was initialized by another thread while we were

286

not holding the GIL, keep it. */

287

close(fd);

288

fd = urandom_cache.fd;

289

}

Antoine Pitrou

2014-04-26 14:33:03 +0200

[diff] [blame]

290

else {

Victor Stinner

2016-08-16 18:46:38 +0200

[diff] [blame]

291

if (_Py_fstat(fd, &st)) {

close(fd);

return -1;

}

else {

urandom_cache.fd = fd;

297

urandom_cache.st_dev = st.st_dev;

298

urandom_cache.st_ino = st.st_ino;

299

}

Antoine Pitrou

2014-04-26 14:33:03 +0200

[diff] [blame]

300

}

301

}

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

302

Victor Stinner

2016-08-16 18:46:38 +0200

[diff] [blame]

303

do {

304

n = _Py_read(fd, buffer, (size_t)size);

if (n == -1)

return -1;

if (n == 0) {

PyErr_Format(PyExc_RuntimeError,

309

"Failed to read %zi bytes from /dev/urandom",

size);

return -1;

}

buffer += n;

size -= n;

} while (0 < size);

}

else {

fd = _Py_open_noraise("/dev/urandom", O_RDONLY);

320

if (fd < 0) {

Victor Stinner

c9382eb

2015-03-19 23:36:33 +0100

[diff] [blame]

return -1;

}

Victor Stinner

2016-08-16 18:46:38 +0200

[diff] [blame]

while (0 < size)

{

do {

n = read(fd, buffer, (size_t)size);

328

} while (n < 0 && errno == EINTR);

Victor Stinner

c9382eb

2015-03-19 23:36:33 +0100

[diff] [blame]

329

Victor Stinner

2016-08-16 18:46:38 +0200

[diff] [blame]

330

if (n <= 0) {

331

/* stop on error or if read(size) returned 0 */

Victor Stinner

3ee933f

2016-08-16 18:27:44 +0200

[diff] [blame]

332

close(fd);

Victor Stinner

2016-08-16 18:46:38 +0200

[diff] [blame]

return -1;

}

buffer += n;

size -= n;

}

close(fd);

}

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

341

return 0;

342

}

Antoine Pitrou

2013-08-31 00:26:02 +0200

[diff] [blame]

343

344

static void

345

dev_urandom_close(void)

346

{

Antoine Pitrou

2014-04-26 14:33:03 +0200

[diff] [blame]

347

if (urandom_cache.fd >= 0) {

348

close(urandom_cache.fd);

349

urandom_cache.fd = -1;

Antoine Pitrou

2013-08-31 00:26:02 +0200

[diff] [blame]

}

}

Victor Stinner

2015-10-01 09:47:30 +0200

[diff] [blame]

353

#endif

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

354

355

/* Fill buffer with pseudo-random bytes generated by a linear congruent

356

generator (LCG):

357

358

x(n+1) = (x(n) * 214013 + 2531011) % 2^32

359

360

Use bits 23..16 of x(n) to generate a byte. */

361

static void

362

lcg_urandom(unsigned int x0, unsigned char *buffer, size_t size)

{

size_t index;

unsigned int x;

x = x0;

for (index=0; index < size; index++) {

369

x *= 214013;

370

x += 2531011;

371

/* modulo 2 ^ (8 * sizeof(int)) */

372

buffer[index] = (x >> 16) & 0xff;

}

}

Victor Stinner

2016-08-16 15:23:58 +0200

[diff] [blame]

376

/* If raise is zero:

Victor Stinner

2016-08-16 18:46:38 +0200

[diff] [blame]

377

- Don't raise exceptions on error

378

- Don't call PyErr_CheckSignals() on EINTR (retry directly the interrupted

379

syscall)

380

- Don't release the GIL to call syscalls. */

Victor Stinner

2016-08-16 15:23:58 +0200

[diff] [blame]

381

static int

Victor Stinner

2016-09-06 16:33:52 -0700

[diff] [blame]

382

pyurandom(void *buffer, Py_ssize_t size, int blocking, int raise)

Victor Stinner

2016-08-16 15:23:58 +0200

[diff] [blame]

{

if (size < 0) {

if (raise) {

PyErr_Format(PyExc_ValueError,

387

"negative argument not allowed");

}

return -1;

}

if (size == 0) {

return 0;

}

#ifdef MS_WINDOWS

return win32_urandom((unsigned char *)buffer, size, raise);

398

#elif defined(PY_GETENTROPY)

399

return py_getentropy(buffer, size, raise);

400

#else

Victor Stinner

2016-09-06 16:33:52 -0700

[diff] [blame]

401

return dev_urandom(buffer, size, blocking, raise);

Victor Stinner

2016-08-16 15:23:58 +0200

[diff] [blame]

#endif

}

Georg Brandl

2013-10-06 18:43:19 +0200

[diff] [blame]

405

/* Fill buffer with size pseudo-random bytes from the operating system random

Serhiy Storchaka

56a6d85

2014-12-01 18:28:43 +0200

[diff] [blame]

406

number generator (RNG). It is suitable for most cryptographic purposes

Georg Brandl

c6a2c9b

2013-10-06 18:43:19 +0200

[diff] [blame]

407

except long living private keys for asymmetric encryption.

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

408

Victor Stinner

2016-09-06 16:33:52 -0700

[diff] [blame]

409

On Linux 3.17 and newer, the getrandom() syscall is used in blocking mode:

410

block until the system urandom entropy pool is initialized (128 bits are

411

collected by the kernel).

412

413

Return 0 on success. Raise an exception and return -1 on error. */

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

414

int

415

_PyOS_URandom(void *buffer, Py_ssize_t size)

416

{

Victor Stinner

2016-09-06 16:33:52 -0700

[diff] [blame]

417

return pyurandom(buffer, size, 1, 1);

418

}

419

420

/* Fill buffer with size pseudo-random bytes from the operating system random

421

number generator (RNG). It is not suitable for cryptographic purpose.

422

423

On Linux 3.17 and newer (when getrandom() syscall is used), if the system

424

urandom is not initialized yet, the function returns "weak" entropy read

425

from /dev/urandom.

426

427

Return 0 on success. Raise an exception and return -1 on error. */

428

int

429

_PyOS_URandomNonblock(void *buffer, Py_ssize_t size)

430

{

431

return pyurandom(buffer, size, 0, 1);

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

}

void

_PyRandom_Init(void)

{

char *env;

Christian Heimes

985ecdc

2013-11-20 11:46:18 +0100

[diff] [blame]

438

unsigned char *secret = (unsigned char *)&_Py_HashSecret.uc;

Benjamin Peterson

2012-02-21 11:08:50 -0500

[diff] [blame]

439

Py_ssize_t secret_size = sizeof(_Py_HashSecret_t);

Serhiy Storchaka

fad85aa

2015-11-07 15:42:38 +0200

[diff] [blame]

440

Py_BUILD_ASSERT(sizeof(_Py_HashSecret_t) == sizeof(_Py_HashSecret.uc));

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

441

Benjamin Peterson

2012-02-21 11:08:50 -0500

[diff] [blame]

442

if (_Py_HashSecret_Initialized)

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

443

return;

Benjamin Peterson

2012-02-21 11:08:50 -0500

[diff] [blame]

444

_Py_HashSecret_Initialized = 1;

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

445

446

/*

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

447

Hash randomization is enabled. Generate a per-process secret,

448

using PYTHONHASHSEED if provided.

449

*/

450

451

env = Py_GETENV("PYTHONHASHSEED");

Georg Brandl

12897d7

2012-02-20 23:49:29 +0100

[diff] [blame]

452

if (env && *env != '\0' && strcmp(env, "random") != 0) {

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

453

char *endptr = env;

454

unsigned long seed;

455

seed = strtoul(env, &endptr, 10);

456

if (*endptr != '\0'

457

|| seed > 4294967295UL

458

|| (errno == ERANGE && seed == ULONG_MAX))

459

{

460

Py_FatalError("PYTHONHASHSEED must be \"random\" or an integer "

461

"in range [0; 4294967295]");

462

}

463

if (seed == 0) {

464

/* disable the randomized hash */

465

memset(secret, 0, secret_size);

466

}

467

else {

Christian Heimes

985ecdc

2013-11-20 11:46:18 +0100

[diff] [blame]

468

lcg_urandom(seed, secret, secret_size);

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

469

}

470

}

471

else {

Victor Stinner

2016-08-16 15:23:58 +0200

[diff] [blame]

472

int res;

473

474

/* _PyRandom_Init() is called very early in the Python initialization

Victor Stinner

2016-09-06 16:33:52 -0700

[diff] [blame]

475

and so exceptions cannot be used (use raise=0).

476

477

_PyRandom_Init() must not block Python initialization: call

478

pyurandom() is non-blocking mode (blocking=0): see the PEP 524. */

479

res = pyurandom(secret, secret_size, 0, 0);

Victor Stinner

2016-08-16 15:23:58 +0200

[diff] [blame]

480

if (res < 0) {

481

Py_FatalError("failed to get random numbers to initialize Python");

482

}

Georg Brandl

2012-02-20 19:54:16 +0100

[diff] [blame]

483

}

484

}

Antoine Pitrou

2013-08-31 00:26:02 +0200

[diff] [blame]

void

_PyRandom_Fini(void)

{

Victor Stinner

d50c3f3

2014-05-02 22:06:44 +0200

[diff] [blame]

489

#ifdef MS_WINDOWS

490

if (hCryptProv) {

Tim Golden

b8ac3e1

2014-05-06 13:29:45 +0100

[diff] [blame]

491

CryptReleaseContext(hCryptProv, 0);

Victor Stinner

d50c3f3

2014-05-02 22:06:44 +0200

[diff] [blame]

492

hCryptProv = 0;

493

}

Victor Stinner

2015-10-01 09:47:30 +0200

[diff] [blame]

494

#elif defined(PY_GETENTROPY)

Victor Stinner

2014-12-21 01:16:38 +0100

[diff] [blame]

495

/* nothing to clean */

Victor Stinner

d50c3f3

2014-05-02 22:06:44 +0200

[diff] [blame]

496

#else

Antoine Pitrou