(file) Return to Random.c CVS log (file) (dir) Up to [Pegasus] / pegasus / src / Executor
File: [Pegasus] / pegasus / src / Executor / Random.c (download)
Revision: 1.2, Fri May 25 17:35:07 2007 UTC (17 years, 1 month ago) by kumpf
Branch: MAIN
CVS Tags: TASK_PEP328_SOLARIS_NEVADA_PORT, TASK-PEP328_SOLARIS_NEVADA_PORT_v2-root, TASK-PEP328_SOLARIS_NEVADA_PORT_v2-branch, TASK-PEP328_SOLARIS_NEVADA_PORT-root, TASK-PEP328_SOLARIS_NEVADA_PORT-branch, TASK-PEP328_SOLARIS_IX86_CC_PORT-root, TASK-PEP328_SOLARIS_IX86_CC_PORT-branch-v2, TASK-PEP328_SOLARIS_IX86_CC_PORT-branch, TASK-PEP311_WSMan-root, TASK-PEP311_WSMan-branch, TASK-PEP305_VXWORKS-root, TASK-PEP305_VXWORKS-branch-pre-solaris-port, TASK-PEP305_VXWORKS-branch-post-solaris-port, TASK-PEP305_VXWORKS-branch-beta2, TASK-PEP305_VXWORKS-branch, TASK-PEP305_VXWORKS-2008-10-23, TASK-PEP291_IPV6-root, TASK-PEP291_IPV6-branch, TASK-PEP274_dacim-root, TASK-PEP274_dacim-merged_out_to_branch, TASK-PEP274_dacim-merged_out_from_trunk, TASK-PEP274_dacim-merged_in_to_trunk, TASK-PEP274_dacim-merged_in_from_branch, TASK-PEP274_dacim-branch, TASK-Bug2102Final-root, TASK-Bug2102Final-merged_out_to_branch, TASK-Bug2102Final-merged_out_from_trunk, TASK-Bug2102Final-merged_in_to_trunk, TASK-Bug2102Final-merged_in_from_branch, TASK-Bug2102Final-branch, TASK-BUG7240-root, TASK-BUG7240-branch, TASK-BUG7146_SqlRepositoryPrototype-root, TASK-BUG7146_SqlRepositoryPrototype-merged_out_to_branch, TASK-BUG7146_SqlRepositoryPrototype-merged_out_from_trunk, TASK-BUG7146_SqlRepositoryPrototype-merged_in_to_trunk, TASK-BUG7146_SqlRepositoryPrototype-merged_in_from_branch, TASK-BUG7146_SqlRepositoryPrototype-branch, RELEASE_2_8_2-RC1, RELEASE_2_8_2, RELEASE_2_8_1-RC1, RELEASE_2_8_1, RELEASE_2_8_0_BETA, RELEASE_2_8_0-RC2, RELEASE_2_8_0-RC1, RELEASE_2_8_0-FC, RELEASE_2_8_0, RELEASE_2_8-root, RELEASE_2_8-branch, RELEASE_2_7_3-RC1, RELEASE_2_7_3, RELEASE_2_7_2-RC1, RELEASE_2_7_2, RELEASE_2_7_1-RC1, RELEASE_2_7_1, RELEASE_2_7_0-RC1, RELEASE_2_7_0-BETA, RELEASE_2_7_0, RELEASE_2_7-root, RELEASE_2_7-branch, RELEASE_2_6_1, Makefile
Changes since 1.1: +164 -0 lines 
BUG#: 6037
TITLE: PEP 286 Privilege Separation
DESCRIPTION: Implement privilege separation for the CIM Server.  This allows the CIM Server to run without privilege, using a separate small process to perform privileged operations as necessary.

/*
//%2006////////////////////////////////////////////////////////////////////////
//
// Copyright (c) 2000, 2001, 2002 BMC Software; Hewlett-Packard Development
// Company, L.P.; IBM Corp.; The Open Group; Tivoli Systems.
// Copyright (c) 2003 BMC Software; Hewlett-Packard Development Company, L.P.;
// IBM Corp.; EMC Corporation, The Open Group.
// Copyright (c) 2004 BMC Software; Hewlett-Packard Development Company, L.P.;
// IBM Corp.; EMC Corporation; VERITAS Software Corporation; The Open Group.
// Copyright (c) 2005 Hewlett-Packard Development Company, L.P.; IBM Corp.;
// EMC Corporation; VERITAS Software Corporation; The Open Group.
// Copyright (c) 2006 Hewlett-Packard Development Company, L.P.; IBM Corp.;
// EMC Corporation; Symantec Corporation; The Open Group.
//
// Permission is hereby granted, free of charge, to any person obtaining a copy
// of this software and associated documentation files (the "Software"), to
// deal in the Software without restriction, including without limitation the
// rights to use, copy, modify, merge, publish, distribute, sublicense, and/or
// sell copies of the Software, and to permit persons to whom the Software is
// furnished to do so, subject to the following conditions:
// 
// THE ABOVE COPYRIGHT NOTICE AND THIS PERMISSION NOTICE SHALL BE INCLUDED IN
// ALL COPIES OR SUBSTANTIAL PORTIONS OF THE SOFTWARE. THE SOFTWARE IS PROVIDED
// "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR IMPLIED, INCLUDING BUT NOT
// LIMITED TO THE WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR
// PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT
// HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN
// ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION
// WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.
//
//%/////////////////////////////////////////////////////////////////////////////
*/

#include "Random.h"
#include <stdlib.h>
#include <sys/types.h>
#include <sys/stat.h>
#include <sys/time.h>
#include <fcntl.h>
#include <unistd.h>
#include <errno.h>

/*
**==============================================================================
**
** FillRandomBytes1()
**
**     Fills *data* with *size* random bytes using the high-quality random
**     number generator device (/dev/urandom).
**
**==============================================================================
*/

static int _fillRandomBytes1(unsigned char* data, size_t size)
{
    size_t numErrors = 0;
    const size_t MAX_ERRORS_TOLERATED = 20;

    int fd = open("/dev/urandom", O_RDONLY | O_NONBLOCK);

    if (fd < 0)
        return -1;

    while (size)
    {
        ssize_t n = read(fd, data, size);

        if (n < 1)
        {
            if (++numErrors == MAX_ERRORS_TOLERATED)
                break;

            if (errno == EAGAIN)
                continue;

            break;
        }

        size -= n;
        data += n;
    }

    close(fd);
    return size == 0 ? 0 : -1;
}

/*
**==============================================================================
**
** FillRandomBytes2()
**
**     Fills *data* with *size* random bytes using the standard rand() function.
**     Note: this function uses srand(), which is generally not considered
**     "random" enough for security purposes but it is only used if
**     FillRandomBytes1() fails.
**
**==============================================================================
*/

static void _fillRandomBytes2(unsigned char* data, size_t size)
{
    struct timeval tv;

    /* Seed the random number generator. */

    gettimeofday(&tv, 0);

    /* Flawfinder: ignore */
    srand(tv.tv_usec);

    /* Fill data with random bytes. */

    while (size--)
        *data++ = rand();
}

/*
**==============================================================================
**
** FillRandomBytes()
**
**==============================================================================
*/

void FillRandomBytes(unsigned char* data, size_t size)
{
    if (_fillRandomBytes1(data, size) != 0)
        _fillRandomBytes2(data, size);
}

/*
**==============================================================================
**
** RandBytesToHexASCII()
**
**     Converts the bytes given by *data* to a hexidecimal sequence of ASCII
**     characters. The *ascii* parameter must be twice size plus one (for the
**     null terminator).
**
**==============================================================================
*/

void RandBytesToHexASCII(
    const unsigned char* data,
    size_t size,
    char* ascii)
{
    static char _hexDigits[] =
    {
        '0','1','2','3','4','5','6','7','8','9','A','B','C','D','E','F'
    };
    size_t i;
    size_t j = 0;

    for (i = 0; i < size; i++)
    {
        unsigned char hi = data[i] >> 4;
        unsigned char lo = 0x0F & data[i];
        ascii[j++] = _hexDigits[hi];
        ascii[j++] = _hexDigits[lo];
    }

    ascii[j] = '\0';
}
No CVS admin address has been configured
 Powered by
ViewCVS 0.9.2