/src/libzip/lib/zip_random_unix.c
Line | Count | Source (jump to first uncovered line) |
1 | | /* |
2 | | zip_random_unix.c -- fill the user's buffer with random stuff (Unix version) |
3 | | Copyright (C) 2016-2023 Dieter Baron and Thomas Klausner |
4 | | |
5 | | This file is part of libzip, a library to manipulate ZIP archives. |
6 | | The authors can be contacted at <info@libzip.org> |
7 | | |
8 | | Redistribution and use in source and binary forms, with or without |
9 | | modification, are permitted provided that the following conditions |
10 | | are met: |
11 | | 1. Redistributions of source code must retain the above copyright |
12 | | notice, this list of conditions and the following disclaimer. |
13 | | 2. Redistributions in binary form must reproduce the above copyright |
14 | | notice, this list of conditions and the following disclaimer in |
15 | | the documentation and/or other materials provided with the |
16 | | distribution. |
17 | | 3. The names of the authors may not be used to endorse or promote |
18 | | products derived from this software without specific prior |
19 | | written permission. |
20 | | |
21 | | THIS SOFTWARE IS PROVIDED BY THE AUTHORS ``AS IS'' AND ANY EXPRESS |
22 | | OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED |
23 | | WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE |
24 | | ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHORS BE LIABLE FOR ANY |
25 | | DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL |
26 | | DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE |
27 | | GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS |
28 | | INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER |
29 | | IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR |
30 | | OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN |
31 | | IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. |
32 | | */ |
33 | | |
34 | | #include "zipint.h" |
35 | | |
36 | | #ifdef HAVE_CRYPTO |
37 | | #include "zip_crypto.h" |
38 | | #endif |
39 | | |
40 | | #ifdef HAVE_ARC4RANDOM |
41 | | |
42 | | #include <stdlib.h> |
43 | | |
44 | | #ifndef HAVE_SECURE_RANDOM |
45 | | ZIP_EXTERN bool |
46 | | zip_secure_random(zip_uint8_t *buffer, zip_uint16_t length) { |
47 | | arc4random_buf(buffer, length); |
48 | | return true; |
49 | | } |
50 | | #endif |
51 | | |
52 | | #ifndef HAVE_RANDOM_UINT32 |
53 | | zip_uint32_t |
54 | | zip_random_uint32(void) { |
55 | | return arc4random(); |
56 | | } |
57 | | #endif |
58 | | |
59 | | #else /* HAVE_ARC4RANDOM */ |
60 | | |
61 | | #ifndef HAVE_SECURE_RANDOM |
62 | | #include <fcntl.h> |
63 | | #include <unistd.h> |
64 | | |
65 | | ZIP_EXTERN bool |
66 | | zip_secure_random(zip_uint8_t *buffer, zip_uint16_t length) { |
67 | | int fd; |
68 | | |
69 | | if ((fd = open("/dev/urandom", O_RDONLY)) < 0) { |
70 | | return false; |
71 | | } |
72 | | |
73 | | if (read(fd, buffer, length) != length) { |
74 | | close(fd); |
75 | | return false; |
76 | | } |
77 | | |
78 | | close(fd); |
79 | | return true; |
80 | | } |
81 | | #endif |
82 | | |
83 | | #ifndef HAVE_RANDOM_UINT32 |
84 | | #include <stdlib.h> |
85 | | |
86 | | #ifndef HAVE_RANDOM |
87 | 0 | #define srandom srand |
88 | 0 | #define random rand |
89 | | #endif |
90 | | |
91 | | zip_uint32_t |
92 | 980 | zip_random_uint32(void) { |
93 | 980 | static bool seeded = false; |
94 | | |
95 | 980 | zip_uint32_t value; |
96 | | |
97 | 980 | if (zip_secure_random((zip_uint8_t *)&value, sizeof(value))) { |
98 | 980 | return value; |
99 | 980 | } |
100 | | |
101 | 0 | if (!seeded) { |
102 | 0 | srandom((unsigned int)time(NULL)); |
103 | 0 | seeded = true; |
104 | 0 | } |
105 | |
|
106 | 0 | return (zip_uint32_t)random(); |
107 | 980 | } |
108 | | #endif |
109 | | |
110 | | #endif /* HAVE_ARC4RANDOM */ |