qemu/crypto/random-platform.c

/*
 * QEMU Crypto random number provider
 *
 * Copyright (c) 2015-2016 Red Hat, Inc.
 *
 * This library is free software; you can redistribute it and/or
 * modify it under the terms of the GNU Lesser General Public
 * License as published by the Free Software Foundation; either
 * version 2 of the License, or (at your option) any later version.
 *
 * This library is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
 * Lesser General Public License for more details.
 *
 * You should have received a copy of the GNU Lesser General Public
 * License along with this library; if not, see <http://www.gnu.org/licenses/>.
 *
 */

#include "qemu/osdep.h"

#include "crypto/random.h"

#ifdef _WIN32
#include <wincrypt.h>
static HCRYPTPROV hCryptProv;
#else
static int fd; /* a file handle to either /dev/urandom or /dev/random */
#endif

int qcrypto_random_init(Error **errp)
{
#ifndef _WIN32
    /* TBD perhaps also add support for BSD getentropy / Linux
     * getrandom syscalls directly */
    fd = open("/dev/urandom", O_RDONLY);
    if (fd == -1 && errno == ENOENT) {
        fd = open("/dev/random", O_RDONLY);
    }

    if (fd < 0) {
        error_setg(errp, "No /dev/urandom or /dev/random found");
        return -1;
    }
#else
    if (!CryptAcquireContext(&hCryptProv, NULL, NULL, PROV_RSA_FULL,
                             CRYPT_SILENT | CRYPT_VERIFYCONTEXT)) {
        error_setg_win32(errp, GetLastError(),
                         "Unable to create cryptographic provider");
        return -1;
    }
#endif

    return 0;
}

int qcrypto_random_bytes(uint8_t *buf G_GNUC_UNUSED,
                         size_t buflen G_GNUC_UNUSED,
                         Error **errp)
{
#ifndef _WIN32
    int ret = -1;
    int got;

    while (buflen > 0) {
        got = read(fd, buf, buflen);
        if (got < 0) {
            error_setg_errno(errp, errno,
                             "Unable to read random bytes");
            goto cleanup;
        } else if (!got) {
            error_setg(errp,
                       "Unexpected EOF reading random bytes");
            goto cleanup;
        }
        buflen -= got;
        buf += got;
    }

    ret = 0;
 cleanup:
    return ret;
#else
    if (!CryptGenRandom(hCryptProv, buflen, buf)) {
        error_setg_win32(errp, GetLastError(),
                         "Unable to read random bytes");
        return -1;
    }

    return 0;
#endif
}
crypto: add cryptographic random byte source There are three backend impls provided. The preferred is gnutls, which is backed by nettle in modern distros. The gcrypt impl is provided for cases where QEMU build against gnutls is disabled, but crypto is still desired. No nettle impl is provided, since it is non-trivial to use the nettle APIs for random numbers. Users of nettle should ensure gnutls is enabled for QEMU. Reviewed-by: Fam Zheng <famz@redhat.com> Reviewed-by: Eric Blake <eblake@redhat.com> Signed-off-by: Daniel P. Berrange <berrange@redhat.com> 2015-10-31 14:39:52 +09:00			`/*`
			`* QEMU Crypto random number provider`
			`*`
			`* Copyright (c) 2015-2016 Red Hat, Inc.`
			`*`
			`* This library is free software; you can redistribute it and/or`
			`* modify it under the terms of the GNU Lesser General Public`
			`* License as published by the Free Software Foundation; either`
			`* version 2 of the License, or (at your option) any later version.`
			`*`
			`* This library is distributed in the hope that it will be useful,`
			`* but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU`
			`* Lesser General Public License for more details.`
			`*`
			`* You should have received a copy of the GNU Lesser General Public`
			`* License along with this library; if not, see <http://www.gnu.org/licenses/>.`
			`*`
			`*/`

			`#include "qemu/osdep.h"`

			`#include "crypto/random.h"`

crypto: qcrypto_random_bytes() now works on windows w/o any other crypto libs If no crypto library is included in the build, QEMU uses qcrypto_random_bytes() to generate random data. That function tried to open /dev/urandom or /dev/random and if opening both files failed it errored out. Those files obviously do not exist on windows, so there the code uses CryptGenRandom(). Furthermore there was some refactoring and a new function qcrypto_random_init() was introduced. If a proper crypto library (gnutls or libgcrypt) is included in the build, this function does nothing. If neither is included it initializes the (platform specific) handles that are used by qcrypto_random_bytes(). Either: * a handle to /dev/urandom \| /dev/random on unix like systems * a handle to a cryptographic service provider on windows Signed-off-by: Geert Martin Ijewski <gm.ijewski@web.de> Signed-off-by: Daniel P. Berrange <berrange@redhat.com> 2017-04-26 00:15:01 +02:00			`#ifdef _WIN32`
fix mingw build failure Signed-off-by: Gerd Hoffmann <kraxel@redhat.com> Reviewed-by: Stefan Weil <sw@weilnetz.de> Reviewed-by: Daniel P. Berrange <berrange@redhat.com> Message-id: 20170516052439.16214-1-kraxel@redhat.com Signed-off-by: Stefan Hajnoczi <stefanha@redhat.com> 2017-05-16 07:24:39 +02:00			`#include <wincrypt.h>`
crypto: qcrypto_random_bytes() now works on windows w/o any other crypto libs If no crypto library is included in the build, QEMU uses qcrypto_random_bytes() to generate random data. That function tried to open /dev/urandom or /dev/random and if opening both files failed it errored out. Those files obviously do not exist on windows, so there the code uses CryptGenRandom(). Furthermore there was some refactoring and a new function qcrypto_random_init() was introduced. If a proper crypto library (gnutls or libgcrypt) is included in the build, this function does nothing. If neither is included it initializes the (platform specific) handles that are used by qcrypto_random_bytes(). Either: * a handle to /dev/urandom \| /dev/random on unix like systems * a handle to a cryptographic service provider on windows Signed-off-by: Geert Martin Ijewski <gm.ijewski@web.de> Signed-off-by: Daniel P. Berrange <berrange@redhat.com> 2017-04-26 00:15:01 +02:00			`static HCRYPTPROV hCryptProv;`
			`#else`
			`static int fd; /* a file handle to either /dev/urandom or /dev/random */`
			`#endif`
crypto: use /dev/[u]random as a final fallback random source If neither gcrypt or gnutls are available to provide a cryptographic random number generator, fallback to consuming bytes directly from /dev/[u]random. Signed-off-by: Daniel P. Berrange <berrange@redhat.com> 2016-07-21 10:37:14 +01:00
crypto: qcrypto_random_bytes() now works on windows w/o any other crypto libs If no crypto library is included in the build, QEMU uses qcrypto_random_bytes() to generate random data. That function tried to open /dev/urandom or /dev/random and if opening both files failed it errored out. Those files obviously do not exist on windows, so there the code uses CryptGenRandom(). Furthermore there was some refactoring and a new function qcrypto_random_init() was introduced. If a proper crypto library (gnutls or libgcrypt) is included in the build, this function does nothing. If neither is included it initializes the (platform specific) handles that are used by qcrypto_random_bytes(). Either: * a handle to /dev/urandom \| /dev/random on unix like systems * a handle to a cryptographic service provider on windows Signed-off-by: Geert Martin Ijewski <gm.ijewski@web.de> Signed-off-by: Daniel P. Berrange <berrange@redhat.com> 2017-04-26 00:15:01 +02:00			`int qcrypto_random_init(Error **errp)`
			`{`
			`#ifndef _WIN32`
crypto: use /dev/[u]random as a final fallback random source If neither gcrypt or gnutls are available to provide a cryptographic random number generator, fallback to consuming bytes directly from /dev/[u]random. Signed-off-by: Daniel P. Berrange <berrange@redhat.com> 2016-07-21 10:37:14 +01:00			`/* TBD perhaps also add support for BSD getentropy / Linux`
			`* getrandom syscalls directly */`
			`fd = open("/dev/urandom", O_RDONLY);`
			`if (fd == -1 && errno == ENOENT) {`
			`fd = open("/dev/random", O_RDONLY);`
			`}`

			`if (fd < 0) {`
			`error_setg(errp, "No /dev/urandom or /dev/random found");`
			`return -1;`
			`}`
crypto: qcrypto_random_bytes() now works on windows w/o any other crypto libs If no crypto library is included in the build, QEMU uses qcrypto_random_bytes() to generate random data. That function tried to open /dev/urandom or /dev/random and if opening both files failed it errored out. Those files obviously do not exist on windows, so there the code uses CryptGenRandom(). Furthermore there was some refactoring and a new function qcrypto_random_init() was introduced. If a proper crypto library (gnutls or libgcrypt) is included in the build, this function does nothing. If neither is included it initializes the (platform specific) handles that are used by qcrypto_random_bytes(). Either: * a handle to /dev/urandom \| /dev/random on unix like systems * a handle to a cryptographic service provider on windows Signed-off-by: Geert Martin Ijewski <gm.ijewski@web.de> Signed-off-by: Daniel P. Berrange <berrange@redhat.com> 2017-04-26 00:15:01 +02:00			`#else`
			`if (!CryptAcquireContext(&hCryptProv, NULL, NULL, PROV_RSA_FULL,`
			`CRYPT_SILENT \| CRYPT_VERIFYCONTEXT)) {`
			`error_setg_win32(errp, GetLastError(),`
			`"Unable to create cryptographic provider");`
			`return -1;`
			`}`
			`#endif`

			`return 0;`
			`}`

			`int qcrypto_random_bytes(uint8_t *buf G_GNUC_UNUSED,`
			`size_t buflen G_GNUC_UNUSED,`
			`Error **errp)`
			`{`
			`#ifndef _WIN32`
			`int ret = -1;`
			`int got;`
crypto: use /dev/[u]random as a final fallback random source If neither gcrypt or gnutls are available to provide a cryptographic random number generator, fallback to consuming bytes directly from /dev/[u]random. Signed-off-by: Daniel P. Berrange <berrange@redhat.com> 2016-07-21 10:37:14 +01:00
			`while (buflen > 0) {`
			`got = read(fd, buf, buflen);`
			`if (got < 0) {`
			`error_setg_errno(errp, errno,`
			`"Unable to read random bytes");`
			`goto cleanup;`
			`} else if (!got) {`
			`error_setg(errp,`
			`"Unexpected EOF reading random bytes");`
			`goto cleanup;`
			`}`
			`buflen -= got;`
			`buf += got;`
			`}`

			`ret = 0;`
			`cleanup:`
			`return ret;`
crypto: qcrypto_random_bytes() now works on windows w/o any other crypto libs If no crypto library is included in the build, QEMU uses qcrypto_random_bytes() to generate random data. That function tried to open /dev/urandom or /dev/random and if opening both files failed it errored out. Those files obviously do not exist on windows, so there the code uses CryptGenRandom(). Furthermore there was some refactoring and a new function qcrypto_random_init() was introduced. If a proper crypto library (gnutls or libgcrypt) is included in the build, this function does nothing. If neither is included it initializes the (platform specific) handles that are used by qcrypto_random_bytes(). Either: * a handle to /dev/urandom \| /dev/random on unix like systems * a handle to a cryptographic service provider on windows Signed-off-by: Geert Martin Ijewski <gm.ijewski@web.de> Signed-off-by: Daniel P. Berrange <berrange@redhat.com> 2017-04-26 00:15:01 +02:00			`#else`
			`if (!CryptGenRandom(hCryptProv, buflen, buf)) {`
			`error_setg_win32(errp, GetLastError(),`
			`"Unable to read random bytes");`
			`return -1;`
			`}`

			`return 0;`
			`#endif`
crypto: add cryptographic random byte source There are three backend impls provided. The preferred is gnutls, which is backed by nettle in modern distros. The gcrypt impl is provided for cases where QEMU build against gnutls is disabled, but crypto is still desired. No nettle impl is provided, since it is non-trivial to use the nettle APIs for random numbers. Users of nettle should ensure gnutls is enabled for QEMU. Reviewed-by: Fam Zheng <famz@redhat.com> Reviewed-by: Eric Blake <eblake@redhat.com> Signed-off-by: Daniel P. Berrange <berrange@redhat.com> 2015-10-31 14:39:52 +09:00			`}`