Protect use of globalRNG

2021-01-20 16:30:18 -06:00
parent 57b06f700d
commit 02114e7739
1 changed files with 13 additions and 1 deletions
--- a/src/ssl.c
+++ b/src/ssl.c
@ -30943,6 +30943,7 @@ int wolfSSL_RAND_bytes(unsigned char* buf, int num)
 #else
    WC_RNG  tmpRNG[1];
 #endif
+    int used_global = 0;

    WOLFSSL_ENTER("wolfSSL_RAND_bytes");

@ -30952,8 +30953,15 @@ int wolfSSL_RAND_bytes(unsigned char* buf, int num)
        return ret;
 #endif

-    if (initGlobalRNG)
+    if (initGlobalRNG) {
+        if (wc_LockMutex(&globalRNGMutex) != 0) {
+            WOLFSSL_MSG("Bad Lock Mutex rng");
+            return ret;
+        }
+
        rng = &globalRNG;
+        used_global = 1;
+    }
    else if(wc_InitRng(tmpRNG) == 0) {
        rng = tmpRNG;
        initTmpRng = 1;
@ -30965,6 +30973,10 @@ int wolfSSL_RAND_bytes(unsigned char* buf, int num)
            ret = WOLFSSL_SUCCESS;
    }

+    if (used_global == 1) {
+        wc_UnLockMutex(&globalRNGMutex);
+    }
+
    if (initTmpRng)
        wc_FreeRng(tmpRNG);