From 35a74b81573fbb8d56904a86c8f340851d38937e Mon Sep 17 00:00:00 2001 From: Marko Lindqvist Date: Wed, 24 Mar 2021 01:50:50 +0200 Subject: [PATCH 18/18] Support unpredictable random seed on Windows See osdn #41842 Signed-off-by: Marko Lindqvist --- configure.ac | 8 +++++--- utility/randseed.c | 32 ++++++++++++++++++++++++++++++++ 2 files changed, 37 insertions(+), 3 deletions(-) diff --git a/configure.ac b/configure.ac index c2eb294154..6899dd0919 100644 --- a/configure.ac +++ b/configure.ac @@ -1416,11 +1416,13 @@ AC_CHECK_FUNCS([strerror strstr uname nanosleep usleep]) AC_CHECK_FUNCS([getline _strcoll stricoll _stricoll strcasecoll]) AC_CHECK_FUNCS([backtrace setenv putenv]) -dnl Possible random sources on Unixen +dnl Possible random sources +AC_CHECK_HEADERS([sys/random.h bcrypt.h]) +AC_CHECK_LIB([bcrypt], [BCryptGenRandom], [ + AC_DEFINE([HAVE_BCRYPTGENRANDOM], [1], [BCryptGenRandom() available]) + UTILITY_LIBS="${UTILITY_LIBS} -lbcrypt" ]) AC_CHECK_FUNCS([getentropy clock_gettime]) -AC_CHECK_HEADERS([sys/random.h]) - dnl TODO: Reimplement this check, in a cross-compiling friendly way dnl AC_CHECK_FILES([/dev/urandom]) diff --git a/utility/randseed.c b/utility/randseed.c index b042b1b37c..ff985eae38 100644 --- a/utility/randseed.c +++ b/utility/randseed.c @@ -19,6 +19,9 @@ #include "fc_prehdrs.h" +#ifdef HAVE_BCRYPT_H +#include +#endif #include #include #include @@ -31,6 +34,9 @@ #ifdef HAVE_UNISTD_H #include #endif +#ifdef FREECIV_MSWINDOWS +#include +#endif /* utility */ #include "fcintl.h" @@ -63,6 +69,28 @@ static bool generate_seed_getentropy(uint32_t *ret) return FALSE; } +/************************************************************************** + Read a 32-bit random value using BCryptGenRandom(), if available. + (Windows) + Return FALSE on error, otherwise return TRUE and store seed in *ret. +**************************************************************************/ +static bool generate_seed_bcryptgenrandom(uint32_t *ret) +{ +#ifdef HAVE_BCRYPTGENRANDOM + uint32_t seed = 0; + NTSTATUS Status; + + Status = BCryptGenRandom(NULL, (PUCHAR)&seed, sizeof(seed), + BCRYPT_USE_SYSTEM_PREFERRED_RNG); + + if (NT_SUCCESS(Status)) { + return TRUE; + } +#endif /* HAVE_BCRYPTGENRANDOM */ + + return FALSE; +} + /************************************************************************** Read a 32-bit random value using /dev/urandom, if available. (Most Unix-like systems) @@ -171,6 +199,10 @@ unsigned int generate_game_seed(void) log_debug("Got random seed from getentropy()"); return seed; } + if (generate_seed_bcryptgenrandom(&seed)) { + log_debug("Got random seed from BCryptGenRandom()"); + return seed; + } if (generate_seed_urandom(&seed)) { log_debug("Got random seed from urandom()"); return seed; -- 2.30.2