From ee0460cff538a3de7ca89fb54d37215757659a42 Mon Sep 17 00:00:00 2001 From: Daniel Seither Date: Fri, 25 Sep 2015 14:10:01 +0200 Subject: Add the Darwin_SecRandom entropy source It uses the SecRandomCopyBytes function from the Security framework of OS X and iOS. We need this because it is the official way to get cryptographically secure random numbers on iOS, where /dev/random is not accessible due to sandboxing. --- .../entropy/darwin_secrandom/darwin_secrandom.cpp | 28 ++++++++++++++++++++++ 1 file changed, 28 insertions(+) create mode 100644 src/lib/entropy/darwin_secrandom/darwin_secrandom.cpp (limited to 'src/lib/entropy/darwin_secrandom/darwin_secrandom.cpp') diff --git a/src/lib/entropy/darwin_secrandom/darwin_secrandom.cpp b/src/lib/entropy/darwin_secrandom/darwin_secrandom.cpp new file mode 100644 index 000000000..f04b75a12 --- /dev/null +++ b/src/lib/entropy/darwin_secrandom/darwin_secrandom.cpp @@ -0,0 +1,28 @@ +/* +* Darwin SecRandomCopyBytes EntropySource +* (C) 2015 Daniel Seither (Kullo GmbH) +* +* Botan is released under the Simplified BSD License (see license.txt) +*/ + +#include +#include + +namespace Botan { + +/** +* Gather entropy from SecRandomCopyBytes +*/ +void Darwin_SecRandom::poll(Entropy_Accumulator& accum) + { + const size_t ENTROPY_BITS_PER_BYTE = 8; + const size_t BUF_SIZE = 256; + + m_buf.resize(BUF_SIZE); + if (0 == SecRandomCopyBytes(kSecRandomDefault, m_buf.size(), m_buf.data())) + { + accum.add(m_buf.data(), m_buf.size(), ENTROPY_BITS_PER_BYTE); + } + } + +} -- cgit v1.2.3