1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
|
local ffi = require "ffi"
local C = ffi.C
local ffi_str = ffi.string
require "resty.openssl.include.rand"
local ctx_lib = require "resty.openssl.ctx"
local ctypes = require "resty.openssl.auxiliary.ctypes"
local format_error = require("resty.openssl.err").format_error
local OPENSSL_3X = require("resty.openssl.version").OPENSSL_3X
local buf
local buf_size = 0
local function bytes(length, private, strength)
if type(length) ~= "number" then
return nil, "rand.bytes: expect a number at #1"
elseif strength and type(strength) ~= "number" then
return nil, "rand.bytes: expect a number at #3"
end
-- generally we don't need manually reseed rng
-- https://www.openssl.org/docs/man1.1.1/man3/RAND_seed.html
-- initialize or resize buffer
if not buf or buf_size < length then
buf = ctypes.uchar_array(length)
buf_size = length
end
local code
if OPENSSL_3X then
if private then
code = C.RAND_priv_bytes_ex(ctx_lib.get_libctx(), buf, length, strength or 0)
else
code = C.RAND_bytes_ex(ctx_lib.get_libctx(), buf, length, strength or 0)
end
else
if private then
code = C.RAND_priv_bytes(buf, length)
else
code = C.RAND_bytes(buf, length)
end
end
if code ~= 1 then
return nil, format_error("rand.bytes", code)
end
return ffi_str(buf, length)
end
return {
bytes = bytes,
}
|
