-
Notifications
You must be signed in to change notification settings - Fork 167
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
Showing
3 changed files
with
89 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,17 @@ | ||
#![deny(warnings)] | ||
|
||
use std::env; | ||
|
||
fn main() { | ||
let target = env::var("TARGET").expect("TARGET was not set"); | ||
if target.contains("uwp") { | ||
// for BCryptGenRandom | ||
println!("cargo:rustc-link-lib=bcrypt"); | ||
} else if target.contains("windows") { | ||
// for RtlGenRandom (aka SystemFunction036) | ||
println!("cargo:rustc-link-lib=advapi32"); | ||
} else if target.contains("apple-ios") { | ||
// for SecRandomCopyBytes and kSecRandomDefault | ||
println!("cargo:rustc-link-lib=framework=Security"); | ||
} | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,55 @@ | ||
// Copyright 2018 Developers of the Rand project. | ||
// | ||
// Licensed under the Apache License, Version 2.0 <LICENSE-APACHE or | ||
// https://www.apache.org/licenses/LICENSE-2.0> or the MIT license | ||
// <LICENSE-MIT or https://opensource.org/licenses/MIT>, at your | ||
// option. This file may not be copied, modified, or distributed | ||
// except according to those terms. | ||
|
||
//! Implementation for Windows UWP targets. After deprecation of Windows XP | ||
//! and Vista, this can superseed the `RtlGenRandom`-based implementation. | ||
use crate::Error; | ||
use core::{ffi::c_void, num::NonZeroU32, ptr, u32}; | ||
|
||
const BCRYPT_USE_SYSTEM_PREFERRED_RNG: u32 = 0x00000002; | ||
|
||
extern "system" { | ||
fn BCryptGenRandom( | ||
hAlgorithm: *mut c_void, | ||
pBuffer: *mut u8, | ||
cbBuffer: u32, | ||
dwFlags: u32, | ||
) -> u32; | ||
} | ||
|
||
pub fn getrandom_inner(dest: &mut [u8]) -> Result<(), Error> { | ||
// Prevent overflow of u32 | ||
for chunk in dest.chunks_mut(u32::max_value() as usize) { | ||
let ret = unsafe { | ||
BCryptGenRandom( | ||
ptr::null_mut(), | ||
chunk.as_mut_ptr(), | ||
chunk.len() as u32, | ||
BCRYPT_USE_SYSTEM_PREFERRED_RNG, | ||
) | ||
}; | ||
// NTSTATUS codes use two highest bits for severity codes | ||
match ret >> 30 { | ||
0b01 => info!("BCryptGenRandom: information code 0x{:08X}", ret), | ||
0b10 => warn!("BCryptGenRandom: warning code 0x{:08X}", ret), | ||
0b11 => { | ||
error!("BCryptGenRandom: failed with 0x{:08X}", ret); | ||
// We zeroize the highest bit, so the error code will reside | ||
// inside the range designated for OS codes. | ||
let code = ret & (u32::MAX >> 1); | ||
// SAFETY: the second highest bit is always equal to one, | ||
// so it's impossible to get zero. Unfortunately compiler | ||
// is not smart enough to figure out it yet. | ||
let code = unsafe { NonZeroU32::new_unchecked(code) }; | ||
return Err(Error::from(code)); | ||
} | ||
_ => (), | ||
} | ||
} | ||
Ok(()) | ||
} |