refactored HashDRBG to remove some redundant code

This commit is contained in:
John Safranek 2014-11-07 17:05:18 -08:00
parent 138ce50bae
commit 12a6978401

View File

@ -366,7 +366,6 @@ int InitRng(RNG* rng)
rng->drbg = XMALLOC(sizeof(DRBG), NULL, DYNAMIC_TYPE_RNG); rng->drbg = XMALLOC(sizeof(DRBG), NULL, DYNAMIC_TYPE_RNG);
if (rng->drbg == NULL) { if (rng->drbg == NULL) {
rng->status = DRBG_FAILED;
ret = MEMORY_E; ret = MEMORY_E;
} }
/* This doesn't use a separate nonce. The entropy input will be /* This doesn't use a separate nonce. The entropy input will be
@ -375,7 +374,14 @@ int InitRng(RNG* rng)
else if (GenerateSeed(&rng->seed, entropy, ENTROPY_NONCE_SZ) == 0 && else if (GenerateSeed(&rng->seed, entropy, ENTROPY_NONCE_SZ) == 0 &&
Hash_DRBG_Instantiate(rng->drbg, entropy, ENTROPY_NONCE_SZ, Hash_DRBG_Instantiate(rng->drbg, entropy, ENTROPY_NONCE_SZ,
NULL, 0) == DRBG_SUCCESS) { NULL, 0) == DRBG_SUCCESS) {
ret = Hash_DRBG_Generate(rng->drbg, NULL, 0); ret = Hash_DRBG_Generate(rng->drbg, NULL, 0);
}
else
ret = DRBG_FAILURE;
XMEMSET(entropy, 0, ENTROPY_NONCE_SZ);
if (ret == DRBG_SUCCESS) { if (ret == DRBG_SUCCESS) {
rng->status = DRBG_OK; rng->status = DRBG_OK;
ret = 0; ret = 0;
@ -384,17 +390,13 @@ int InitRng(RNG* rng)
rng->status = DRBG_CONT_FAILED; rng->status = DRBG_CONT_FAILED;
ret = DRBG_CONT_FIPS_E; ret = DRBG_CONT_FIPS_E;
} }
else { else if (ret == DRBG_FAILURE) {
rng->status = DRBG_FAILED; rng->status = DRBG_FAILED;
ret = RNG_FAILURE_E; ret = RNG_FAILURE_E;
} }
}
else { else {
rng->status = DRBG_FAILED; rng->status = DRBG_FAILED;
ret = RNG_FAILURE_E;
} }
XMEMSET(entropy, 0, ENTROPY_NONCE_SZ);
} }
return ret; return ret;
@ -413,19 +415,22 @@ int RNG_GenerateBlock(RNG* rng, byte* output, word32 sz)
return RNG_FAILURE_E; return RNG_FAILURE_E;
ret = Hash_DRBG_Generate(rng->drbg, output, sz); ret = Hash_DRBG_Generate(rng->drbg, output, sz);
if (ret == DRBG_SUCCESS) {
ret = 0; if (ret == DRBG_NEED_RESEED) {
}
else if (ret == DRBG_NEED_RESEED) {
byte entropy[ENTROPY_SZ]; byte entropy[ENTROPY_SZ];
if (GenerateSeed(&rng->seed, entropy, ENTROPY_SZ) == 0 && if (GenerateSeed(&rng->seed, entropy, ENTROPY_SZ) == 0 &&
Hash_DRBG_Reseed(rng->drbg, entropy, ENTROPY_SZ) == DRBG_SUCCESS) { Hash_DRBG_Reseed(rng->drbg, entropy, ENTROPY_SZ) == DRBG_SUCCESS) {
ret = Hash_DRBG_Generate(rng->drbg, NULL, 0); ret = Hash_DRBG_Generate(rng->drbg, NULL, 0);
if (ret == DRBG_SUCCESS) { if (ret == DRBG_SUCCESS)
ret = Hash_DRBG_Generate(rng->drbg, output, sz); ret = Hash_DRBG_Generate(rng->drbg, output, sz);
} }
else
ret = DRBG_FAILURE;
XMEMSET(entropy, 0, ENTROPY_SZ);
}
if (ret == DRBG_SUCCESS) { if (ret == DRBG_SUCCESS) {
ret = 0; ret = 0;
@ -438,22 +443,6 @@ int RNG_GenerateBlock(RNG* rng, byte* output, word32 sz)
ret = RNG_FAILURE_E; ret = RNG_FAILURE_E;
rng->status = DRBG_FAILED; rng->status = DRBG_FAILED;
} }
}
else {
ret = RNG_FAILURE_E;
rng->status = DRBG_FAILED;
}
XMEMSET(entropy, 0, ENTROPY_SZ);
}
else if (ret == DRBG_CONT_FAILURE) {
ret = DRBG_CONT_FIPS_E;
rng->status = DRBG_CONT_FAILED;
}
else {
ret = RNG_FAILURE_E;
rng->status = DRBG_FAILED;
}
return ret; return ret;
} }