67 lines
1.5 KiB
Rust
67 lines
1.5 KiB
Rust
//! Utilities for secure random number generation.
|
|
//!
|
|
//! # Examples
|
|
//!
|
|
//! To generate a buffer with cryptographically strong bytes:
|
|
//!
|
|
//! ```
|
|
//! use openssl::rand::rand_bytes;
|
|
//!
|
|
//! let mut buf = [0; 256];
|
|
//! rand_bytes(&mut buf).unwrap();
|
|
//! ```
|
|
use ffi;
|
|
use libc::c_int;
|
|
|
|
use cvt;
|
|
use error::ErrorStack;
|
|
|
|
/// Fill buffer with cryptographically strong pseudo-random bytes.
|
|
///
|
|
/// This corresponds to [`RAND_bytes`].
|
|
///
|
|
/// # Examples
|
|
///
|
|
/// To generate a buffer with cryptographically strong bytes:
|
|
///
|
|
/// ```
|
|
/// use openssl::rand::rand_bytes;
|
|
///
|
|
/// let mut buf = [0; 256];
|
|
/// rand_bytes(&mut buf).unwrap();
|
|
/// ```
|
|
///
|
|
/// [`RAND_bytes`]: https://www.openssl.org/docs/man1.1.0/crypto/RAND_bytes.html
|
|
pub fn rand_bytes(buf: &mut [u8]) -> Result<(), ErrorStack> {
|
|
unsafe {
|
|
ffi::init();
|
|
assert!(buf.len() <= c_int::max_value() as usize);
|
|
cvt(ffi::RAND_bytes(buf.as_mut_ptr(), buf.len() as c_int)).map(|_| ())
|
|
}
|
|
}
|
|
|
|
/// Controls random device file descriptor behavior.
|
|
///
|
|
/// Requires OpenSSL 1.1.1 or newer.
|
|
///
|
|
/// This corresponds to [`RAND_keep_random_devices_open`].
|
|
///
|
|
/// [`RAND_keep_random_devices_open`]: https://www.openssl.org/docs/manmaster/man3/RAND_keep_random_devices_open.html
|
|
#[cfg(ossl111)]
|
|
pub fn keep_random_devices_open(keep: bool) {
|
|
unsafe {
|
|
ffi::RAND_keep_random_devices_open(keep as c_int);
|
|
}
|
|
}
|
|
|
|
#[cfg(test)]
|
|
mod tests {
|
|
use super::rand_bytes;
|
|
|
|
#[test]
|
|
fn test_rand_bytes() {
|
|
let mut buf = [0; 32];
|
|
rand_bytes(&mut buf).unwrap();
|
|
}
|
|
}
|