Home Explore Help
Register Sign In
Avans-TI
/
2.3-InternetRadio
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: b12fac4b8e
Branches Tags
2.3-InternetRad...
/
nutos
/
nut
/
contrib
/
arm-crypto-lib
/
entropium
/
entropium.c

entropium.c 4.9 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135 
  1. /* entropium.c */
    2. 

  2. /*
    3. 

  3.     This file is part of the ARM-Crypto-Lib.
    4. 

  4.     Copyright (C) 2006-2010  Daniel Otte (daniel.otte@rub.de)
    5. 

  5. 

  6.     This program is free software: you can redistribute it and/or modify
    7. 

  7.     it under the terms of the GNU General Public License as published by
    8. 

  8.     the Free Software Foundation, either version 3 of the License, or
    9. 

  9.     (at your option) any later version.
    10. 

  10. 

  11.     This program is distributed in the hope that it will be useful,
    12. 

  12.     but WITHOUT ANY WARRANTY; without even the implied warranty of
    13. 

  13.     MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    14. 

  14.     GNU General Public License for more details.
    15. 

  15. 

  16.     You should have received a copy of the GNU General Public License
    17. 

  17.     along with this program.  If not, see <http://www.gnu.org/licenses/>.
    18. 

  18. */
    19. 

  19. /**
    20. 

  20.  * \file    entropium.c
    21. 

  21.  * \author  Daniel Otte
    22. 

  22.  * \email   daniel.otte@rub.de
    23. 

  23.  * \date    2006-05-17
    24. 

  24.  * \license	GPLv3 or later
    25. 

  25.  * \brief	This file contains an implementaition of a pseudo-random-number generator.
    26. 

  26.  * 
    27. 

  27.  * Extension 1:
    28. 

  28.  * 	rndCore is expanded to 512 bits for more security.
    29. 

  29.  *
    30. 

  30.   \verbatim
    31. 

  31.                        ################################################################################################
    32. 

  32.                        #                                                                                              #
    33. 

  33.                        #         +---------------------------+                                                        #
    34. 

  34.                        #         |                           |                                                        #
    35. 

  35.                        #         V                           |                                                        #
    36. 

  36.                        #      (concat)                       |                                                        #
    37. 

  37.    +---------------+   #    o---------o             (xor)+---------+      o---------o        o----o     o---------o   #    +--------------+
    38. 

  38.    | entropy Block | -----> | sha-256 | --(offset)-<     | rndCore | ---> | sha-256 | --+----| +1 |---> | sha-256 | -----> | random Block |
    39. 

  39.    +---------------+   #    o---------o             (xor)+---------+      o---------o   |    o----o     o---------o   #    +--------------+
    40. 

  40.                        #                                 (xor) (xor)                    |                             #
    41. 

  41.                        #                                   ^     ^                      |                             #
    42. 

  42.                        #                                    \   /                       |                             #
    43. 

  43.                        #                                   (offset)---------------------+                             #
    44. 

  44.                        #                                                                                              #
    45. 

  45.                        ################################################################################################
    46. 

  46.   \endverbatim
    47. 

  47.  */
    48. 

  48. 

  49. #include <inttypes.h>
    50. 

  50. #include <string.h>
    51. 

  51. #include <crypto/sha256.h>
    52. 

  52. #include <crypto/entropium.h>
    53. 

  53. 

  54. #include <stdio.h>
    55. 

  55. 

  56. /**
    57. 

  57.  * \brief secret entropy pool. 
    58. 

  58.  * This is the core of the random which is generated
    59. 

  59.  */
    60. 

  60. static
    61. 

  61. uint32_t rndCore[16]; 
    62. 

  62. 

  63. /*************************************************************************/
    64. 

  64. 

  65. /* idea is: hash the message and add it via xor to rndCore
    66. 

  66.  *
    67. 

  67.  * length in bits 
    68. 

  68.  * 
    69. 

  69.  * we simply first "hash" rndCore, then entropy.
    70. 

  70.  */
    71. 

  71. void entropium_addEntropy(unsigned length_b, const void* data){
    72. 

  72. 	sha256_ctx_t s;
    73. 

  73. 	static uint8_t offset=0; /* selects if higher or lower half gets updated */
    74. 

  74. 	sha256_init(&s);
    75. 

  75. 	sha256_nextBlock(&s, rndCore);
    76. 

  76. 	while (length_b>=512){
    77. 

  77. 		sha256_nextBlock(&s, data);
    78. 

  78. 		data = (uint8_t*)data+ 512/8;
    79. 

  79. 		length_b -= 512;	
    80. 

  80. 	}
    81. 

  81. 	sha256_lastBlock(&s, data, length_b);
    82. 

  82. 	uint8_t i;
    83. 

  83. 	for (i=0; i<8; ++i){
    84. 

  84. 		rndCore[i+offset] ^= s.h[i];
    85. 

  85. 	}
    86. 

  86. 	offset ^= 8; /* hehe */
    87. 

  87. }
    88. 

  88. 

  89. /*************************************************************************/
    90. 

  90. 

  91. void entropium_getRandomBlock(void *b){
    92. 

  92. 	sha256_ctx_t s;
    93. 

  93. 	uint8_t offset=8;
    94. 

  94. 	
    95. 

  95. 	sha256_init(&s);
    96. 

  96. 	sha256_lastBlock(&s, rndCore, 512); /* remember the byte order! */
    97. 

  97. 	uint8_t i;
    98. 

  98. 	for (i=0; i<8; ++i){
    99. 

  99. 		rndCore[i+offset] ^= s.h[i];
    100. 

  100. 	}
    101. 

  101. 	offset ^= 8; /* hehe */
    102. 

  102. 	memcpy(b, s.h, 32); /* back up first hash in b */
    103. 

  103. 	((uint8_t*)b)[*((uint8_t*)b)&31]++; 	/* the important increment step */
    104. 

  104. 	sha256_init(&s);
    105. 

  105. 	sha256_lastBlock(&s, b, 256);
    106. 

  106. 	memcpy(b, s.h, 32);
    107. 

  107. }
    108. 

  108. 

  109. /*************************************************************************/
    110. 

  110. 

  111. 

  112. uint8_t entropium_getRandomByte(void){
    113. 

  113.     static uint8_t block[32];
    114. 

  114.     static uint8_t i = 0;
    115. 

  115. 

  116. 	if(i == 0){
    117. 

  117. 		entropium_getRandomBlock((void*)block);
    118. 

  118. 		i = 32;
    119. 

  119. 	}	
    120. 

  120. 	return block[--i];
    121. 

  121. }
    122. 

  122. 

  123. void entropium_fillBlockRandom(void* block, unsigned length_B){
    124. 

  124. 	while(length_B>ENTROPIUM_RANDOMBLOCK_SIZE){
    125. 

  125. 		entropium_getRandomBlock(block);
    126. 

  126. 		block = (uint8_t*)block + ENTROPIUM_RANDOMBLOCK_SIZE;
    127. 

  127. 		length_B -= ENTROPIUM_RANDOMBLOCK_SIZE;
    128. 

  128. 	}
    129. 

  129. 	while(length_B){
    130. 

  130. 		*((uint8_t*)block) = entropium_getRandomByte();
    131. 

  131. 		block= (uint8_t*)block +1; --length_B;
    132. 

  132. 	}
    133. 

  133. }
    134. 

  134.  
    135. 

  135.  
    136.