Add random number generation support.

2024-12-27 05:48:20 +01:00 · 2021-10-09 23:05:39 -04:00 · 2021-10-09 23:05:39 -04:00 · 953de26f6b
commit 953de26f6b
parent 2245c9d4f5
2 changed files with 183 additions and 0 deletions
--- a/pdfio-crypto.c
+++ b/pdfio-crypto.c
@ -12,6 +12,188 @@
 //
 #include "pdfio-private.h"
 #if !_WIN32
 #  include <sys/time.h>
 #endif // !_WIN32
 #ifdef __has_include
 #  if __has_include(<sys/random.h>)
 #    define HAVE_GETRANDOM 1
 #    include <sys/random.h>
 #  endif // __has_include(<sys/random.h>)
 #endif // __has_include
 //
 // '_pdfioCryptoMakeRandom()' - Fill a buffer with good random numbers.
 //
 void
 _pdfioCryptoMakeRandom(uint8_t *buffer,	// I - Buffer
                       size_t  bytes)	// I - Number of bytes
 {
 #ifdef __APPLE__
  // macOS/iOS provide the arc4random function which is seeded with entropy
  // from the system...
  while (bytes > 0)
  {
    // Just collect 8 bits from each call to fill the buffer...
    *buffer++ = (uint8_t)arc4random();
    bytes --;
  }
 #else
 #  if _WIN32
  // Windows provides the CryptGenRandom function...
  HCRYPTPROV	prov;			// Cryptographic provider
  if (CryptAcquireContextA(&prov, NULL, NULL, PROV_RSA_FULL, 0))
  {
    // Got the default crypto provider, try to get random data...
    BOOL success = CryptGenRandom(prov, (DWORD)bytes, buffer);
    // Release the crypto provider and return on success...
    CryptReleaseContext(prov, 0);
    if (success)
      return;
  }
 #  elif HAVE_GETRANDOM
  // Linux provides a system call called getrandom that uses system entropy ...
  ssize_t	rbytes;			// Bytes read
  while (bytes > 0)
  {
    if ((rbytes = getrandom(buffer, bytes, 0)) < 0)
    {
      if (errno != EINTR && errno != EAGAIN)
 	break;
    }
    bytes -= (size_t)rbytes;
    buffer += rbytes;
  }
  if (bytes == 0)
    return;
 #  else
  // Other UNIX-y systems have /dev/urandom...
  int		fd;			// Random number file
  ssize_t	rbytes;			// Bytes read
  // Fall back on /dev/urandom...
  if ((fd = open("/dev/urandom", O_RDONLY)) >= 0)
  {
    while (bytes > 0)
    {
      if ((rbytes = read(fd, buffer, bytes)) < 0)
      {
        if (errno != EINTR && errno != EAGAIN)
          break;
      }
      bytes -= (size_t)rbytes;
      buffer += rbytes;
    }
    close(fd);
    if (bytes == 0)
      return;
  }
 #  endif // _WIN32
  // If we get here then we were unable to get enough random data or the local
  // system doesn't have enough entropy.  Make some up...
  uint32_t	i,			// Looping var
 		mt_state[624],		// Mersenne twister state
 		mt_index,		// Mersenne twister index
 		temp;			// Temporary value
 #  if _WIN32
  struct _timeb curtime;		// Current time
  _ftime(&curtime);
  mt_state[0] = (uint32_t)(curtime.time + curtime.millitm);
 #  else
  struct timeval curtime;		// Current time
  gettimeofday(&curtime, NULL);
  mt_state[0] = (uint32_t)(curtime.tv_sec + curtime.tv_usec);
 #  endif // _WIN32
  // Seed the random number state...
  mt_index = 0;
  for (i = 1; i < 624; i ++)
    mt_state[i] = (uint32_t)((1812433253 * (mt_state[i - 1] ^ (mt_state[i - 1] >> 30))) + i);
  // Fill the buffer with random numbers...
  while (bytes > 0)
  {
    if (mt_index == 0)
    {
      // Generate a sequence of random numbers...
      uint32_t i1 = 1, i397 = 397;	// Looping vars
      for (i = 0; i < 624; i ++)
      {
 	temp        = (mt_state[i] & 0x80000000) + (mt_state[i1] & 0x7fffffff);
 	mt_state[i] = mt_state[i397] ^ (temp >> 1);
 	if (temp & 1)
 	  mt_state[i] ^= 2567483615u;
 	i1 ++;
 	i397 ++;
 	if (i1 == 624)
 	  i1 = 0;
 	if (i397 == 624)
 	  i397 = 0;
      }
    }
    // Pull 32-bits of random data...
    temp = mt_state[mt_index ++];
    temp ^= temp >> 11;
    temp ^= (temp << 7) & 2636928640u;
    temp ^= (temp << 15) & 4022730752u;
    temp ^= temp >> 18;
    if (mt_index == 624)
      mt_index = 0;
    // Copy to the buffer...
    switch (bytes)
    {
      case 1 :
          *buffer++ = (uint8_t)(temp >> 24);
          bytes --;
          break;
      case 2 :
          *buffer++ = (uint8_t)(temp >> 24);
          *buffer++ = (uint8_t)(temp >> 16);
          bytes -= 2;
          break;
      case 3 :
          *buffer++ = (uint8_t)(temp >> 24);
          *buffer++ = (uint8_t)(temp >> 16);
          *buffer++ = (uint8_t)(temp >> 8);
          bytes -= 3;
          break;
      default :
          *buffer++ = (uint8_t)(temp >> 24);
          *buffer++ = (uint8_t)(temp >> 16);
          *buffer++ = (uint8_t)(temp >> 8);
          *buffer++ = (uint8_t)temp;
          bytes -= 4;
          break;
    }
  }
 #endif // __APPLE__
 }
 //
--- a/pdfio-private.h
+++ b/pdfio-private.h
@ -339,6 +339,7 @@ extern bool		_pdfioArrayWrite(pdfio_array_t *a) _PDFIO_INTERNAL;
 extern void		_pdfioCryptoAESInit(_pdfio_aes_t *ctx, const uint8_t *key, size_t keylen, const uint8_t *iv) _PDFIO_INTERNAL;
 extern void		_pdfioCryptoAESDecrypt(_pdfio_aes_t *ctx, uint8_t *buffer, size_t len) _PDFIO_INTERNAL;
 extern void		_pdfioCryptoAESEncrypt(_pdfio_aes_t *ctx, uint8_t *buffer, size_t len) _PDFIO_INTERNAL;
 extern void		_pdfioCryptoMakeRandom(uint8_t *buffer, size_t bytes) _PDFIO_INTERNAL;
 extern _pdfio_crypto_cb_t _pdfioCryptoMakeReader(pdfio_file_t *pdf, pdfio_obj_t *obj, _pdfio_crypto_ctx_t *ctx, uint8_t *iv, size_t *ivlen) _PDFIO_INTERNAL;
 extern _pdfio_crypto_cb_t _pdfioCryptoMakeWriter(pdfio_file_t *pdf, pdfio_obj_t *obj, _pdfio_crypto_ctx_t *ctx, uint8_t *iv, size_t *ivlen) _PDFIO_INTERNAL;
 extern void		_pdfioCryptoMD5Append(_pdfio_md5_t *pms, const uint8_t *data, size_t nbytes) _PDFIO_INTERNAL;