int RAND_init_fips(void) { DRBG_CTX *dctx; size_t plen; unsigned char pers[32], *p; dctx = FIPS_get_default_drbg(); if (FIPS_drbg_init(dctx, fips_drbg_type, fips_drbg_flags) <= 0) { RANDerr(RAND_F_RAND_INIT_FIPS, RAND_R_ERROR_INITIALISING_DRBG); return 0; } FIPS_drbg_set_callbacks(dctx, drbg_get_entropy, drbg_free_entropy, 20, drbg_get_entropy, drbg_free_entropy); FIPS_drbg_set_rand_callbacks(dctx, drbg_get_adin, 0, drbg_rand_seed, drbg_rand_add); /* Personalisation string: a string followed by date time vector */ strcpy((char *)pers, "OpenSSL DRBG2.0"); plen = drbg_get_adin(dctx, &p); memcpy(pers + 16, p, plen); if (FIPS_drbg_instantiate(dctx, pers, sizeof(pers)) <= 0) { RANDerr(RAND_F_RAND_INIT_FIPS, RAND_R_ERROR_INSTANTIATING_DRBG); return 0; } FIPS_rand_set_method(FIPS_drbg_method()); return 1; }
int FIPS_rand_strength(void) { if (fips_rand_bits) return fips_rand_bits; if (fips_approved_rand_meth == 1) return FIPS_drbg_get_strength(FIPS_get_default_drbg()); else if (fips_approved_rand_meth == 2) return 80; else if (fips_approved_rand_meth == 0) { if (FIPS_module_mode()) return 0; else return 256; } return 0; }