Home Explore Help
Sign In
mirror
/
grpc-swift
mirror of https://github.com/grpc/grpc-swift.git
2
0
Fork 0
Files Issues 0 Wiki
Tree: 8713650706
Branches Tags
grpc-swift
/
Sources
/
BoringSSL
/
crypto
/
rand_extra
/
deterministic.c

deterministic.c 1.7 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748 
  1. /* Copyright (c) 2016, Google Inc.
    2. 

  2.  *
    3. 

  3.  * Permission to use, copy, modify, and/or distribute this software for any
    4. 

  4.  * purpose with or without fee is hereby granted, provided that the above
    5. 

  5.  * copyright notice and this permission notice appear in all copies.
    6. 

  6.  *
    7. 

  7.  * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
    8. 

  8.  * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
    9. 

  9.  * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY
    10. 

  10.  * SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
    11. 

  11.  * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION
    12. 

  12.  * OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN
    13. 

  13.  * CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. */
    14. 

  14. 

  15. #include <openssl/rand.h>
    16. 

  16. 

  17. #if defined(BORINGSSL_UNSAFE_DETERMINISTIC_MODE)
    18. 

  18. 

  19. #include <string.h>
    20. 

  20. 

  21. #include <openssl/chacha.h>
    22. 

  22. 

  23. #include "../internal.h"
    24. 

  24. #include "../fipsmodule/rand/internal.h"
    25. 

  25. 

  26. 

  27. // g_num_calls is the number of calls to |CRYPTO_sysrand| that have occurred.
    28. 

  28. //
    29. 

  29. // This is intentionally not thread-safe. If the fuzzer mode is ever used in a
    30. 

  30. // multi-threaded program, replace this with a thread-local. (A mutex would not
    31. 

  31. // be deterministic.)
    32. 

  32. static uint64_t g_num_calls = 0;
    33. 

  33. 

  34. void RAND_reset_for_fuzzing(void) { g_num_calls = 0; }
    35. 

  35. 

  36. void CRYPTO_sysrand(uint8_t *out, size_t requested) {
    37. 

  37.   static const uint8_t kZeroKey[32];
    38. 

  38. 

  39.   uint8_t nonce[12];
    40. 

  40.   OPENSSL_memset(nonce, 0, sizeof(nonce));
    41. 

  41.   OPENSSL_memcpy(nonce, &g_num_calls, sizeof(g_num_calls));
    42. 

  42. 

  43.   OPENSSL_memset(out, 0, requested);
    44. 

  44.   CRYPTO_chacha_20(out, out, requested, kZeroKey, nonce, 0);
    45. 

  45.   g_num_calls++;
    46. 

  46. }
    47. 

  47. 

  48. #endif  // BORINGSSL_UNSAFE_DETERMINISTIC_MODE
    49.