]>
git.ipfire.org Git - thirdparty/systemd.git/blob - src/random-seed/random-seed.c
2 This file is part of systemd.
4 Copyright 2010 Lennart Poettering
6 systemd is free software; you can redistribute it and/or modify it
7 under the terms of the GNU Lesser General Public License as published by
8 the Free Software Foundation; either version 2.1 of the License, or
9 (at your option) any later version.
11 systemd is distributed in the hope that it will be useful, but
12 WITHOUT ANY WARRANTY; without even the implied warranty of
13 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
14 Lesser General Public License for more details.
16 You should have received a copy of the GNU Lesser General Public License
17 along with systemd; If not, see <http://www.gnu.org/licenses/>.
26 #include "alloc-util.h"
31 #include "string-util.h"
34 #define POOL_SIZE_MIN 512
36 int main(int argc
, char *argv
[]) {
37 _cleanup_close_
int seed_fd
= -1, random_fd
= -1;
38 _cleanup_free_
void* buf
= NULL
;
43 bool refresh_seed_file
= true;
46 log_error("This program requires one argument.");
50 log_set_target(LOG_TARGET_AUTO
);
51 log_parse_environment();
56 /* Read pool size, if possible */
57 f
= fopen("/proc/sys/kernel/random/poolsize", "re");
59 if (fscanf(f
, "%zu", &buf_size
) > 0)
60 /* poolsize is in bits on 2.6, but we want bytes */
66 if (buf_size
<= POOL_SIZE_MIN
)
67 buf_size
= POOL_SIZE_MIN
;
69 buf
= malloc(buf_size
);
75 r
= mkdir_parents_label(RANDOM_SEED
, 0755);
77 log_error_errno(r
, "Failed to create directory " RANDOM_SEED_DIR
": %m");
81 /* When we load the seed we read it and write it to the device
82 * and then immediately update the saved seed with new data,
83 * to make sure the next boot gets seeded differently. */
85 if (streq(argv
[1], "load")) {
87 seed_fd
= open(RANDOM_SEED
, O_RDWR
|O_CLOEXEC
|O_NOCTTY
|O_CREAT
, 0600);
88 open_rw_error
= -errno
;
90 refresh_seed_file
= false;
92 seed_fd
= open(RANDOM_SEED
, O_RDONLY
|O_CLOEXEC
|O_NOCTTY
);
94 bool missing
= errno
== ENOENT
;
96 log_full_errno(missing
? LOG_DEBUG
: LOG_ERR
,
97 open_rw_error
, "Failed to open " RANDOM_SEED
" for writing: %m");
98 r
= log_full_errno(missing
? LOG_DEBUG
: LOG_ERR
,
99 errno
, "Failed to open " RANDOM_SEED
" for reading: %m");
107 random_fd
= open("/dev/urandom", O_RDWR
|O_CLOEXEC
|O_NOCTTY
, 0600);
109 random_fd
= open("/dev/urandom", O_WRONLY
|O_CLOEXEC
|O_NOCTTY
, 0600);
111 r
= log_error_errno(errno
, "Failed to open /dev/urandom: %m");
116 k
= loop_read(seed_fd
, buf
, buf_size
, false);
118 r
= log_error_errno(k
, "Failed to read seed from " RANDOM_SEED
": %m");
121 log_debug("Seed file " RANDOM_SEED
" not yet initialized, proceeding.");
123 (void) lseek(seed_fd
, 0, SEEK_SET
);
125 r
= loop_write(random_fd
, buf
, (size_t) k
, false);
127 log_error_errno(r
, "Failed to write seed to /dev/urandom: %m");
130 } else if (streq(argv
[1], "save")) {
132 seed_fd
= open(RANDOM_SEED
, O_WRONLY
|O_CLOEXEC
|O_NOCTTY
|O_CREAT
, 0600);
134 r
= log_error_errno(errno
, "Failed to open " RANDOM_SEED
": %m");
138 random_fd
= open("/dev/urandom", O_RDONLY
|O_CLOEXEC
|O_NOCTTY
);
140 r
= log_error_errno(errno
, "Failed to open /dev/urandom: %m");
145 log_error("Unknown verb '%s'.", argv
[1]);
150 if (refresh_seed_file
) {
152 /* This is just a safety measure. Given that we are root and
153 * most likely created the file ourselves the mode and owner
154 * should be correct anyway. */
155 (void) fchmod(seed_fd
, 0600);
156 (void) fchown(seed_fd
, 0, 0);
158 k
= loop_read(random_fd
, buf
, buf_size
, false);
160 r
= log_error_errno(k
, "Failed to read new seed from /dev/urandom: %m");
164 log_error("Got EOF while reading from /dev/urandom.");
169 r
= loop_write(seed_fd
, buf
, (size_t) k
, false);
171 log_error_errno(r
, "Failed to write new random seed file: %m");
175 return r
< 0 ? EXIT_FAILURE
: EXIT_SUCCESS
;