src - FreeBSD source tree

diff options


context:
space:
mode:

author	Mark Murray <markm@FreeBSD.org>	1995-10-28 16:58:05 +0000
committer	Mark Murray <markm@FreeBSD.org>	1995-10-28 16:58:05 +0000
commit	1bb2d3142b9e3aca450b1f4e38ac467e611f4577 (patch)
tree	bed4ea6a610ec2669b364d66cd69fe10ce0feb9c
parent	d12f212098dadd4fbb5cfad63974d24e248f4f28 (diff)
download	src-1bb2d3142b9e3aca450b1f4e38ac467e611f4577.tar.gz src-1bb2d3142b9e3aca450b1f4e38ac467e611f4577.zip

Theodore Ts'po's random number gernerator for Linux, ported by me.

This code will only be included in your kernel if you have 'options DEVRANDOM', but that will fall away in a couple of days. Obtained from: Theodore Ts'o, Linux

Notes

Notes: svn path=/head/; revision=11875

Diffstat

-rw-r--r--

sys/amd64/amd64/machdep.c

-rw-r--r--

sys/amd64/amd64/mem.c

112

-rw-r--r--

sys/amd64/isa/vector.S

-rw-r--r--

sys/amd64/isa/vector.s

-rw-r--r--

sys/conf/files.i386

-rw-r--r--

sys/dev/syscons/syscons.c

-rw-r--r--

sys/i386/conf/files.i386

-rw-r--r--

sys/i386/i386/conf.c

-rw-r--r--

sys/i386/i386/machdep.c

-rw-r--r--

sys/i386/i386/mem.c

112

-rw-r--r--

sys/i386/include/random.h

-rw-r--r--

sys/i386/isa/random.c

452

-rw-r--r--

sys/i386/isa/syscons.c

-rw-r--r--

sys/i386/isa/vector.s

-rw-r--r--

sys/isa/syscons.c

-rw-r--r--

sys/sys/random.h

16 files changed, 866 insertions, 40 deletions

diff --git a/sys/amd64/amd64/machdep.c b/sys/amd64/amd64/machdep.c
index 2a21f8e66fab..a844229fc3c5 100644
--- a/sys/amd64/amd64/machdep.c
+++ b/sys/amd64/amd64/machdep.c

@@ -35,7 +35,7 @@

* SUCH DAMAGE.

* from: @(#)machdep.c 7.4 (Berkeley) 6/3/91

- * $Id: machdep.c,v 1.143 1995/09/15 08:31:14 davidg Exp $

+ * $Id: machdep.c,v 1.144 1995/10/10 05:05:28 bde Exp $

#include "npx.h"

@@ -126,6 +126,7 @@

#include <i386/isa/isa.h>

#include <i386/isa/isa_device.h>

#include <i386/isa/rtc.h>

+#include <machine/random.h>

extern void diediedie __P((void));

extern void init386 __P((int first));

@@ -1351,6 +1352,9 @@ init386(first)

#if NISA >0

isa_defaultirq();

#endif

+#ifdef DEVRANDOM

+ rand_initialize();

+#endif

r_gdt.rd_limit = sizeof(gdt) - 1;

r_gdt.rd_base = (int) gdt;

diff --git a/sys/amd64/amd64/mem.c b/sys/amd64/amd64/mem.c
index 6abd68e36732..e2ddf1b3bea6 100644
--- a/sys/amd64/amd64/mem.c
+++ b/sys/amd64/amd64/mem.c

@@ -38,7 +38,7 @@

* from: Utah $Hdr: mem.c 1.13 89/10/08$

* from: @(#)mem.c 7.2 (Berkeley) 5/9/91

- * $Id: mem.c,v 1.13 1995/09/15 23:49:23 davidg Exp $

+ * $Id: mem.c,v 1.14 1995/09/20 13:01:17 davidg Exp $

@@ -62,6 +62,8 @@

#include <vm/vm_prot.h>

#include <vm/pmap.h>

+#include <machine/random.h>

#ifdef DEVFS

#include <sys/devfsext.h>

#include "sys/kernel.h"

@@ -70,12 +72,16 @@ int mmopen();

void memdev_init(void *data) /* data not used */

{

void * x;

-/* path name devsw minor type uid gid perm*/

- x=dev_add("/misc", "mem", mmopen, 0, DV_CHR, 0, 2, 0640);

- x=dev_add("/misc", "kmem", mmopen, 1, DV_CHR, 0, 2, 0640);

- x=dev_add("/misc", "null", mmopen, 2, DV_CHR, 0, 0, 0666);

- x=dev_add("/misc", "zero", mmopen, 12, DV_CHR, 0, 0, 0666);

- x=dev_add("/misc", "io", mmopen, 14, DV_CHR, 0, 2, 0640);

+/* path name devsw minor type uid gid perm*/

+ x=dev_add("/misc", "mem", mmopen, 0, DV_CHR, 0, 2, 0640);

+ x=dev_add("/misc", "kmem", mmopen, 1, DV_CHR, 0, 2, 0640);

+ x=dev_add("/misc", "null", mmopen, 2, DV_CHR, 0, 0, 0666);

+#ifdef DEVRANDOM

+ x=dev_add("/misc", "random", mmopen, 3, DV_CHR, 0, 0, 0666);

+ x=dev_add("/misc", "urandom", mmopen, 4, DV_CHR, 0, 0, 0666);

+#endif

+ x=dev_add("/misc", "zero", mmopen, 12, DV_CHR, 0, 0, 0666);

+ x=dev_add("/misc", "io", mmopen, 14, DV_CHR, 0, 2, 0640);

}

SYSINIT(memdev,SI_SUB_DEVFS, SI_ORDER_ANY, memdev_init, NULL)

#endif /*DEVFS*/

@@ -132,9 +138,12 @@ mmrw(dev, uio, flags)

{

+#ifdef DEVRANDOM

+ u_int poolsize;

+#endif

int error = 0;

- caddr_t zbuf = NULL;

+ caddr_t buf = NULL;

while (uio->uio_resid > 0 && error == 0) {

iov = uio->uio_iov;

@@ -191,19 +200,56 @@ mmrw(dev, uio, flags)

c = iov->iov_len;

break;

+#ifdef DEVRANDOM

+/* minor device 3 (/dev/random) is source of filth on read, rathole on write */

+ case 3:

+ if (uio->uio_rw == UIO_WRITE) {

+ c = iov->iov_len;

+ break;

+ }

+ if (buf == NULL)

+ buf = (caddr_t)

+ malloc(CLBYTES, M_TEMP, M_WAITOK);

+ c = min(iov->iov_len, CLBYTES);

+ poolsize = read_random(buf, c);

+ if (poolsize == 0) {

+ if (buf)

+ free(buf, M_TEMP);

+ return (0);

+ }

+ c = min(c, poolsize);

+ error = uiomove(buf, (int)c, uio);

+ continue;

+/* minor device 4 (/dev/urandom) is source of muck on read, rathole on write */

+ case 4:

+ if (uio->uio_rw == UIO_WRITE) {

+ c = iov->iov_len;

+ break;

+ }

+ if (buf == NULL)

+ buf = (caddr_t)

+ malloc(CLBYTES, M_TEMP, M_WAITOK);

+ c = min(iov->iov_len, CLBYTES);

+ poolsize = read_random_unlimited(buf, c);

+ c = min(c, poolsize);

+ error = uiomove(buf, (int)c, uio);

+ continue;

+#endif

/* minor device 12 (/dev/zero) is source of nulls on read, rathole on write */

case 12:

if (uio->uio_rw == UIO_WRITE) {

c = iov->iov_len;

break;

}

- if (zbuf == NULL) {

- zbuf = (caddr_t)

+ if (buf == NULL) {

+ buf = (caddr_t)

malloc(CLBYTES, M_TEMP, M_WAITOK);

- bzero(zbuf, CLBYTES);

+ bzero(buf, CLBYTES);

}

c = min(iov->iov_len, CLBYTES);

- error = uiomove(zbuf, (int)c, uio);

+ error = uiomove(buf, (int)c, uio);

continue;

#ifdef notyet

@@ -263,8 +309,8 @@ mmrw(dev, uio, flags)

uio->uio_offset += c;

uio->uio_resid -= c;

}

- if (zbuf)

- free(zbuf, M_TEMP);

+ if (buf)

+ free(buf, M_TEMP);

return (error);

}

@@ -293,3 +339,41 @@ int memmmap(dev_t dev, int offset, int nprot)

}

+#ifdef DEVRANDOM

+/*

+ * Allow userland to select which interrupts will be used in the muck

+ * gathering business.

+ */

+int

+mmioctl(dev_t dev, int cmd, caddr_t cmdarg, int flags, struct proc *p)

+ if (minor(dev) != 3 && minor(dev) != 4)

+ return (ENODEV);

+ if (*(u_int16_t *)cmdarg >= 16)

+ return (EINVAL);

+ switch (cmd){

+ case MEM_SETIRQ:

+ interrupt_allowed |= 1 << *(u_int16_t *)cmdarg;

+ break;

+ case MEM_CLEARIRQ:

+ interrupt_allowed &= ~(1 << *(u_int16_t *)cmdarg);

+ break;

+ case MEM_RETURNIRQ:

+ *(u_int16_t *)cmdarg = interrupt_allowed;

+ break;

+ default:

+ return (ENOTTY);

+ }

+ return (0);

+#else

+d_ioctl_t *mmioctl = enodev;

+#endif

diff --git a/sys/amd64/isa/vector.S b/sys/amd64/isa/vector.S
index bbed601c550d..c630bee4cf3a 100644
--- a/sys/amd64/isa/vector.S
+++ b/sys/amd64/isa/vector.S

@@ -1,6 +1,6 @@

* from: vector.s, 386BSD 0.1 unknown origin

- * $Id: vector.s,v 1.11 1994/12/03 10:03:19 bde Exp $

+ * $Id: vector.s,v 1.12 1995/04/15 21:32:18 bde Exp $

#include <i386/isa/icu.h>

@@ -53,6 +53,16 @@

#define MAYBE_PUSHL_ES

#endif

+#ifdef DEVRANDOM

+#define ADDENTROPY(irq_num) \

+ /* Add this interrupt to the pool of entropy */ \

+ pushl $irq_num ; \

+ call _add_interrupt_randomness ; \

+ addl $4,%esp

+#else

+#define ADDENTROPY(irq_num)

+#endif

* Macros for interrupt interrupt entry, call to handler, and exit.

@@ -194,6 +204,8 @@ Xresume/**/irq_num: ; \

FASTER_NOP ; \

outb %al,$icu+1 ; \

sti ; /* XXX _doreti repeats the cli/sti */ \

+ /* Add this interrupt to the pool of entropy */ \

+ ADDENTROPY(irq_num) ; \

MEXITCOUNT ; \

/* We could usually avoid the following jmp by inlining some of */ \

/* _doreti, but it's probably better to use less cache. */ \

diff --git a/sys/amd64/isa/vector.s b/sys/amd64/isa/vector.s
index bbed601c550d..c630bee4cf3a 100644
--- a/sys/amd64/isa/vector.s
+++ b/sys/amd64/isa/vector.s

@@ -1,6 +1,6 @@

* from: vector.s, 386BSD 0.1 unknown origin

- * $Id: vector.s,v 1.11 1994/12/03 10:03:19 bde Exp $

+ * $Id: vector.s,v 1.12 1995/04/15 21:32:18 bde Exp $

#include <i386/isa/icu.h>

@@ -53,6 +53,16 @@

#define MAYBE_PUSHL_ES

#endif

+#ifdef DEVRANDOM

+#define ADDENTROPY(irq_num) \

+ /* Add this interrupt to the pool of entropy */ \

+ pushl $irq_num ; \

+ call _add_interrupt_randomness ; \

+ addl $4,%esp

+#else

+#define ADDENTROPY(irq_num)

+#endif

* Macros for interrupt interrupt entry, call to handler, and exit.

@@ -194,6 +204,8 @@ Xresume/**/irq_num: ; \

FASTER_NOP ; \

outb %al,$icu+1 ; \

sti ; /* XXX _doreti repeats the cli/sti */ \

+ /* Add this interrupt to the pool of entropy */ \

+ ADDENTROPY(irq_num) ; \

MEXITCOUNT ; \

/* We could usually avoid the following jmp by inlining some of */ \

/* _doreti, but it's probably better to use less cache. */ \

diff --git a/sys/conf/files.i386 b/sys/conf/files.i386
index 7379b708a720..8f50bc2bfb7d 100644
--- a/sys/conf/files.i386
+++ b/sys/conf/files.i386

@@ -1,7 +1,7 @@

# This file tells config what files go into building a kernel,

# files marked standard are always included.

-# $Id: files.i386,v 1.109 1995/09/16 17:03:23 bde Exp $

+# $Id: files.i386,v 1.110 1995/10/10 08:04:10 swallace Exp $

aic7xxx_asm optional ahc device-driver \

dependency "$S/dev/aic7xxx/aic7xxx_asm.c" \

@@ -107,6 +107,7 @@ i386/isa/matcd/matcd.c optional matcd device-driver

i386/isa/pcibus.c optional pci device-driver

i386/isa/pcic.c optional ze device-driver

i386/isa/pcic.c optional zp device-driver

+i386/isa/random.c standard

i386/eisa/eisaconf.c optional eisa

i386/eisa/eisadevs.c optional eisa

i386/isa/pcvt/pcvt_drv.c optional vt device-driver

diff --git a/sys/dev/syscons/syscons.c b/sys/dev/syscons/syscons.c
index 327e329763fe..6080597d5900 100644
--- a/sys/dev/syscons/syscons.c
+++ b/sys/dev/syscons/syscons.c

@@ -25,7 +25,7 @@

* (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF

* THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

- * $Id: syscons.c,v 1.125 1995/09/10 21:35:12 bde Exp $

+ * $Id: syscons.c,v 1.126 1995/10/14 07:08:09 bde Exp $

#include "sc.h"

@@ -53,6 +53,7 @@

#include <machine/frame.h>

#include <machine/pc/display.h>

#include <machine/apm_bios.h>

+#include <machine/random.h>

#include <i386/isa/isa.h>

#include <i386/isa/isa_device.h>

@@ -2202,6 +2203,10 @@ next_code:

else

goto next_code;

+#ifdef DEVRANDOM

+ add_keyboard_randomness(scancode);

+#endif

if (cur_console->status & KBD_RAW_MODE)

return scancode;

#if ASYNCH

diff --git a/sys/i386/conf/files.i386 b/sys/i386/conf/files.i386
index 7379b708a720..8f50bc2bfb7d 100644
--- a/sys/i386/conf/files.i386
+++ b/sys/i386/conf/files.i386

@@ -1,7 +1,7 @@

# This file tells config what files go into building a kernel,

# files marked standard are always included.

-# $Id: files.i386,v 1.109 1995/09/16 17:03:23 bde Exp $

+# $Id: files.i386,v 1.110 1995/10/10 08:04:10 swallace Exp $

aic7xxx_asm optional ahc device-driver \

dependency "$S/dev/aic7xxx/aic7xxx_asm.c" \

@@ -107,6 +107,7 @@ i386/isa/matcd/matcd.c optional matcd device-driver

i386/isa/pcibus.c optional pci device-driver

i386/isa/pcic.c optional ze device-driver

i386/isa/pcic.c optional zp device-driver

+i386/isa/random.c standard

i386/eisa/eisaconf.c optional eisa

i386/eisa/eisadevs.c optional eisa

i386/isa/pcvt/pcvt_drv.c optional vt device-driver

diff --git a/sys/i386/i386/conf.c b/sys/i386/i386/conf.c
index f2ca17f48874..f95ce6f5d062 100644
--- a/sys/i386/i386/conf.c
+++ b/sys/i386/i386/conf.c

@@ -42,7 +42,7 @@

* SUCH DAMAGE.

* from: @(#)conf.c 5.8 (Berkeley) 5/12/91

- * $Id: conf.c,v 1.101 1995/10/14 05:25:45 bde Exp $

+ * $Id: conf.c,v 1.102 1995/10/14 15:40:42 davidg Exp $

#include <sys/param.h>

@@ -472,6 +472,7 @@ d_open_t mmopen;

d_close_t mmclose;

d_rdwr_t mmrw;

d_mmap_t memmmap;

+d_ioctl_t mmioctl;

#define mmselect seltrue

#include "pty.h"

@@ -1087,7 +1088,7 @@ struct cdevsw cdevsw[] =

cttyioctl, nullstop, nullreset, nodevtotty,/* tty */

cttyselect, nommap, NULL },

{ mmopen, mmclose, mmrw, mmrw, /*2*/

- noioc, nullstop, nullreset, nodevtotty,/* memory */

+ mmioctl, nullstop, nullreset, nodevtotty,/* memory */

mmselect, memmmap, NULL },

{ wdopen, wdclose, rawread, rawwrite, /*3*/

wdioctl, nostop, nullreset, nodevtotty,/* wd */

diff --git a/sys/i386/i386/machdep.c b/sys/i386/i386/machdep.c
index 2a21f8e66fab..a844229fc3c5 100644
--- a/sys/i386/i386/machdep.c
+++ b/sys/i386/i386/machdep.c

@@ -35,7 +35,7 @@

* SUCH DAMAGE.

* from: @(#)machdep.c 7.4 (Berkeley) 6/3/91

- * $Id: machdep.c,v 1.143 1995/09/15 08:31:14 davidg Exp $

+ * $Id: machdep.c,v 1.144 1995/10/10 05:05:28 bde Exp $

#include "npx.h"

@@ -126,6 +126,7 @@

#include <i386/isa/isa.h>

#include <i386/isa/isa_device.h>

#include <i386/isa/rtc.h>

+#include <machine/random.h>

extern void diediedie __P((void));

extern void init386 __P((int first));

@@ -1351,6 +1352,9 @@ init386(first)

#if NISA >0

isa_defaultirq();

#endif

+#ifdef DEVRANDOM

+ rand_initialize();

+#endif

r_gdt.rd_limit = sizeof(gdt) - 1;

r_gdt.rd_base = (int) gdt;

diff --git a/sys/i386/i386/mem.c b/sys/i386/i386/mem.c
index 6abd68e36732..e2ddf1b3bea6 100644
--- a/sys/i386/i386/mem.c
+++ b/sys/i386/i386/mem.c

@@ -38,7 +38,7 @@

* from: Utah $Hdr: mem.c 1.13 89/10/08$

* from: @(#)mem.c 7.2 (Berkeley) 5/9/91

- * $Id: mem.c,v 1.13 1995/09/15 23:49:23 davidg Exp $

+ * $Id: mem.c,v 1.14 1995/09/20 13:01:17 davidg Exp $

@@ -62,6 +62,8 @@

#include <vm/vm_prot.h>

#include <vm/pmap.h>

+#include <machine/random.h>

#ifdef DEVFS

#include <sys/devfsext.h>

#include "sys/kernel.h"

@@ -70,12 +72,16 @@ int mmopen();

void memdev_init(void *data) /* data not used */

{

void * x;

-/* path name devsw minor type uid gid perm*/

- x=dev_add("/misc", "mem", mmopen, 0, DV_CHR, 0, 2, 0640);

- x=dev_add("/misc", "kmem", mmopen, 1, DV_CHR, 0, 2, 0640);

- x=dev_add("/misc", "null", mmopen, 2, DV_CHR, 0, 0, 0666);

- x=dev_add("/misc", "zero", mmopen, 12, DV_CHR, 0, 0, 0666);

- x=dev_add("/misc", "io", mmopen, 14, DV_CHR, 0, 2, 0640);

+/* path name devsw minor type uid gid perm*/

+ x=dev_add("/misc", "mem", mmopen, 0, DV_CHR, 0, 2, 0640);

+ x=dev_add("/misc", "kmem", mmopen, 1, DV_CHR, 0, 2, 0640);

+ x=dev_add("/misc", "null", mmopen, 2, DV_CHR, 0, 0, 0666);

+#ifdef DEVRANDOM

+ x=dev_add("/misc", "random", mmopen, 3, DV_CHR, 0, 0, 0666);

+ x=dev_add("/misc", "urandom", mmopen, 4, DV_CHR, 0, 0, 0666);

+#endif

+ x=dev_add("/misc", "zero", mmopen, 12, DV_CHR, 0, 0, 0666);

+ x=dev_add("/misc", "io", mmopen, 14, DV_CHR, 0, 2, 0640);

}

SYSINIT(memdev,SI_SUB_DEVFS, SI_ORDER_ANY, memdev_init, NULL)

#endif /*DEVFS*/

@@ -132,9 +138,12 @@ mmrw(dev, uio, flags)

{

+#ifdef DEVRANDOM

+ u_int poolsize;

+#endif

int error = 0;

- caddr_t zbuf = NULL;

+ caddr_t buf = NULL;

while (uio->uio_resid > 0 && error == 0) {

iov = uio->uio_iov;

@@ -191,19 +200,56 @@ mmrw(dev, uio, flags)

c = iov->iov_len;

break;

+#ifdef DEVRANDOM

+/* minor device 3 (/dev/random) is source of filth on read, rathole on write */

+ case 3:

+ if (uio->uio_rw == UIO_WRITE) {

+ c = iov->iov_len;

+ break;

+ }

+ if (buf == NULL)

+ buf = (caddr_t)

+ malloc(CLBYTES, M_TEMP, M_WAITOK);

+ c = min(iov->iov_len, CLBYTES);

+ poolsize = read_random(buf, c);

+ if (poolsize == 0) {

+ if (buf)

+ free(buf, M_TEMP);

+ return (0);

+ }

+ c = min(c, poolsize);

+ error = uiomove(buf, (int)c, uio);

+ continue;

+/* minor device 4 (/dev/urandom) is source of muck on read, rathole on write */

+ case 4:

+ if (uio->uio_rw == UIO_WRITE) {

+ c = iov->iov_len;

+ break;

+ }

+ if (buf == NULL)

+ buf = (caddr_t)

+ malloc(CLBYTES, M_TEMP, M_WAITOK);

+ c = min(iov->iov_len, CLBYTES);

+ poolsize = read_random_unlimited(buf, c);

+ c = min(c, poolsize);

+ error = uiomove(buf, (int)c, uio);

+ continue;

+#endif

/* minor device 12 (/dev/zero) is source of nulls on read, rathole on write */

case 12:

if (uio->uio_rw == UIO_WRITE) {

c = iov->iov_len;

break;

}

- if (zbuf == NULL) {

- zbuf = (caddr_t)

+ if (buf == NULL) {

+ buf = (caddr_t)

malloc(CLBYTES, M_TEMP, M_WAITOK);

- bzero(zbuf, CLBYTES);

+ bzero(buf, CLBYTES);

}

c = min(iov->iov_len, CLBYTES);

- error = uiomove(zbuf, (int)c, uio);

+ error = uiomove(buf, (int)c, uio);

continue;

#ifdef notyet

@@ -263,8 +309,8 @@ mmrw(dev, uio, flags)

uio->uio_offset += c;

uio->uio_resid -= c;

}

- if (zbuf)

- free(zbuf, M_TEMP);

+ if (buf)

+ free(buf, M_TEMP);

return (error);

}

@@ -293,3 +339,41 @@ int memmmap(dev_t dev, int offset, int nprot)

}

+#ifdef DEVRANDOM

+/*

+ * Allow userland to select which interrupts will be used in the muck

+ * gathering business.

+ */

+int

+mmioctl(dev_t dev, int cmd, caddr_t cmdarg, int flags, struct proc *p)

+ if (minor(dev) != 3 && minor(dev) != 4)

+ return (ENODEV);

+ if (*(u_int16_t *)cmdarg >= 16)

+ return (EINVAL);

+ switch (cmd){

+ case MEM_SETIRQ:

+ interrupt_allowed |= 1 << *(u_int16_t *)cmdarg;

+ break;

+ case MEM_CLEARIRQ:

+ interrupt_allowed &= ~(1 << *(u_int16_t *)cmdarg);

+ break;

+ case MEM_RETURNIRQ:

+ *(u_int16_t *)cmdarg = interrupt_allowed;

+ break;

+ default:

+ return (ENOTTY);

+ }

+ return (0);

+#else

+d_ioctl_t *mmioctl = enodev;

+#endif

diff --git a/sys/i386/include/random.h b/sys/i386/include/random.h
new file mode 100644
index 000000000000..78a6b06a894c
--- /dev/null
+++ b/sys/i386/include/random.h

@@ -0,0 +1,72 @@

+/*

+ * random.h -- A strong random number generator

+ *

+ * $Id$

+ *

+ * Version 0.92, last modified 21-Sep-95

+ *

+ * Redistribution and use in source and binary forms, with or without

+ * modification, are permitted provided that the following conditions

+ * are met:

+ * 1. Redistributions of source code must retain the above copyright

+ * notice, and the entire permission notice in its entirety,

+ * including the disclaimer of warranties.

+ * 2. Redistributions in binary form must reproduce the above copyright

+ * notice, this list of conditions and the following disclaimer in the

+ * documentation and/or other materials provided with the distribution.

+ * 3. The name of the author may not be used to endorse or promote

+ * products derived from this software without specific prior

+ * written permission.

+ *

+ * ALTERNATIVELY, this product may be distributed under the terms of

+ * the GNU Public License, in which case the provisions of the GPL are

+ * required INSTEAD OF the above restrictions. (This clause is

+ * necessary due to a potential bad interaction between the GPL and

+ * the restrictions contained in a BSD-style copyright.)

+ *

+ * THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED

+ * WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES

+ * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE

+ * DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT,

+ * INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES

+ * (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR

+ * SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)

+ * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,

+ * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)

+ * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED

+ * OF THE POSSIBILITY OF SUCH DAMAGE.

+ *

+ */

+/*

+ * Many kernel routines will have a use for good random numbers,

+ * for example, for truely random TCP sequence numbers, which prevent

+ * certain forms of TCP spoofing attacks.

+ *

+ */

+#ifndef _MACHINE_RANDOM_H_

+#define _MACHINE_RANDOM_H_ 1

+#include <sys/ioctl.h>

+#define MEM_SETIRQ _IOW('r', 1, int) /* set interrupt */

+#define MEM_CLEARIRQ _IOW('r', 2, int) /* clear interrupt */

+#define MEM_RETURNIRQ _IOR('r', 3, int) /* return interrupt */

+/* Interrupts to be used in the randomising process */

+extern u_int16_t interrupt_allowed;

+/* Exported functions */

+void rand_initialize(void);

+void add_keyboard_randomness(u_char scancode);

+void get_random_bytes(void *buf, u_int nbytes);

+u_int read_random(char *buf, u_int size);

+u_int read_random_unlimited(char *buf, u_int size);

+#endif

diff --git a/sys/i386/isa/random.c b/sys/i386/isa/random.c
new file mode 100644
index 000000000000..af67c56bc803
--- /dev/null
+++ b/sys/i386/isa/random.c

@@ -0,0 +1,452 @@

+/*

+ * random.c -- A strong random number generator