Botan 3.11.0
Crypto and TLS for C&
esdm_rng.cpp
Go to the documentation of this file.
1/*
2* ESDM RNG
3* (C) 2024, Markus Theil <theil.markus@gmail.com>
4*
5* Botan is released under the Simplified BSD License (see license.txt)
6*/
7
8#include <botan/esdm_rng.h>
9
10#include <botan/exceptn.h>
11#include <esdm/esdm_rpc_client.h>
12#include <mutex>
13
14namespace Botan {
15
16namespace {
17/**
18* This helper makes sure that the ESDM service is initialized and
19* finalized as needed in a threadsafe fashion. Finalization happens
20* as soon as all instances of ESDM_RNG are destructed. This may
21* happen multiple times in the lifetime of the process.
22*/
23class ESDM_Context {
24 public:
25 [[nodiscard]] static std::shared_ptr<void> instance() {
26 static ESDM_Context g_instance;
27 return g_instance.acquire();
28 }
29
30 private:
31 ESDM_Context() = default;
32
33 [[nodiscard]] std::shared_ptr<void> acquire() {
34 std::scoped_lock lk(m_mutex);
35 if(m_refs++ == 0) {
36 if(esdm_rpcc_init_unpriv_service(nullptr) != 0) {
37 throw Botan::System_Error("unable to initialize ESDM unprivileged service");
38 }
39 }
40 return std::shared_ptr<void>{nullptr, [this](void*) { this->release(); }};
41 }
42
43 void release() {
44 std::scoped_lock lk(m_mutex);
45 if(m_refs-- == 1) {
46 esdm_rpcc_fini_unpriv_service();
47 }
48 }
49
50 private:
51 std::mutex m_mutex;
52 size_t m_refs = 0;
53};
54} // namespace
55
56ESDM_RNG::ESDM_RNG(bool prediction_resistance) :
57 m_prediction_resistance(prediction_resistance), m_ctx(ESDM_Context::instance()) {}
58
59void ESDM_RNG::fill_bytes_with_input(std::span<uint8_t> out, std::span<const uint8_t> in) {
60 /*
61 * This variable is implicitly set by the "esdm_invoke" macro that comes
62 * with the ESDM library. "esdm_invoke" implements a retry mechanism for
63 * the underlying RPC mechanism of ESDM.
64 */
65 ssize_t ret = 0;
66
67 if(!in.empty()) {
68 ret = 0;
69
70 /*
71 * take additional input, but do not account entropy for it,
72 * as this information is not included in the API
73 */
74 esdm_invoke(esdm_rpcc_write_data(in.data(), in.size()));
75 /*
76 * ret was set by esdm_invoke, as mentioned above
77 */
78 if(ret != 0) {
79 throw Botan::System_Error("Writing additional input to ESDM failed");
80 }
81 }
82
83 if(!out.empty()) {
84 ret = 0;
85
86 if(m_prediction_resistance) {
87 esdm_invoke(esdm_rpcc_get_random_bytes_pr(out.data(), out.size()));
88 } else {
89 esdm_invoke(esdm_rpcc_get_random_bytes_full(out.data(), out.size()));
90 }
91 /*
92 * ret was set by esdm_invoke, as mentioned above
93 */
94 if(ret != static_cast<ssize_t>(out.size())) {
95 throw Botan::System_Error("Fetching random bytes from ESDM failed");
96 }
97 }
98}
99
100RandomNumberGenerator& esdm_rng() {
101 static ESDM_RNG g_esdm_rng;
102 return g_esdm_rng;
103}
104
105} // namespace Botan
Botan::ESDM_RNG
Definition esdm_rng.h:53
Botan::ESDM_RNG::fill_bytes_with_input
void fill_bytes_with_input(std::span< uint8_t > out, std::span< const uint8_t > in) override
Definition esdm_rng.cpp:59
Botan::ESDM_RNG::ESDM_RNG
ESDM_RNG()
Definition esdm_rng.h:58
Botan::System_Error
Definition exceptn.h:305
Botan::esdm_rng
RandomNumberGenerator & esdm_rng()
Definition esdm_rng.cpp:100
Generated by doxygen 1.15.0