Backport some DRBG renamings and typo fixes

    }

    drbg->state = DRBG_READY;

    drbg->generate_counter = 0;

    drbg->reseed_gen_counter = 0;

    drbg->reseed_time = time(NULL);

    if (drbg->reseed_counter > 0) {

    if (drbg->reseed_prop_counter > 0) {

        if (drbg->parent == NULL)

            drbg->reseed_counter++;

            drbg->reseed_prop_counter++;

        else

            drbg->reseed_counter = drbg->parent->reseed_counter;

            drbg->reseed_prop_counter = drbg->parent->reseed_prop_counter;

    }

 end:

        goto end;

    drbg->state = DRBG_READY;

    drbg->generate_counter = 0;

    drbg->reseed_gen_counter = 0;

    drbg->reseed_time = time(NULL);

    if (drbg->reseed_counter > 0) {

    if (drbg->reseed_prop_counter > 0) {

        if (drbg->parent == NULL)

            drbg->reseed_counter++;

            drbg->reseed_prop_counter++;

        else

            drbg->reseed_counter = drbg->parent->reseed_counter;

            drbg->reseed_prop_counter = drbg->parent->reseed_prop_counter;

    }

 end:

    }

    if (drbg->reseed_interval > 0) {

        if (drbg->generate_counter >= drbg->reseed_interval)

        if (drbg->reseed_gen_counter >= drbg->reseed_interval)

            reseed_required = 1;

    }

    if (drbg->reseed_time_interval > 0) {

            || now - drbg->reseed_time >= drbg->reseed_time_interval)

            reseed_required = 1;

    }

    if (drbg->reseed_counter > 0 && drbg->parent != NULL) {

        if (drbg->reseed_counter != drbg->parent->reseed_counter)

    if (drbg->reseed_prop_counter > 0 && drbg->parent != NULL) {

        if (drbg->reseed_prop_counter != drbg->parent->reseed_prop_counter)

            reseed_required = 1;

    }

        return 0;

    }

    drbg->generate_counter++;

    drbg->reseed_gen_counter++;

    return 1;

}

        goto err;

    /* enable seed propagation */

    drbg->reseed_counter = 1;

    drbg->reseed_prop_counter = 1;

    /*

     * Ignore instantiation error to support just-in-time instantiation.

} DRBG_STATUS;

/* intantiate */

/* instantiate */

typedef int (*RAND_DRBG_instantiate_fn)(RAND_DRBG *ctx,

                                        const unsigned char *ent,

                                        size_t entlen,

                                   size_t entlen,

                                   const unsigned char *adin,

                                   size_t adinlen);

/* generat output */

/* generate output */

typedef int (*RAND_DRBG_generate_fn)(RAND_DRBG *ctx,

                                     unsigned char *out,

                                     size_t outlen,

    int type; /* the nid of the underlying algorithm */

    /*

     * Stores the value of the rand_fork_count global as of when we last

     * reseeded.  The DRG reseeds automatically whenever drbg->fork_count !=

     * reseeded.  The DRBG reseeds automatically whenever drbg->fork_count !=

     * rand_fork_count.  Used to provide fork-safety and reseed this DRBG in

     * the child process.

     */

    size_t max_perslen, max_adinlen;

    /* Counts the number of generate requests since the last reseed. */

    unsigned int generate_counter;

    unsigned int reseed_gen_counter;

    /*

     * Maximum number of generate requests until a reseed is required.

     * This value is ignored if it is zero.

     * is added by RAND_add() or RAND_seed() will have an immediate effect on

     * the output of RAND_bytes() resp. RAND_priv_bytes().

     */

    unsigned int reseed_counter;

    unsigned int reseed_prop_counter;

    size_t seedlen;

    DRBG_STATUS state;

    /*

     * Add process id, thread id, and a high resolution timestamp to

     * ensure that the nonce is unique whith high probability for

     * ensure that the nonce is unique with high probability for

     * different process instances.

     */

    data.pid = getpid();

 * Default security strength (in the sense of [NIST SP 800-90Ar1])

 *

 * NIST SP 800-90Ar1 supports the strength of the DRBG being smaller than that

 * of the cipher by collecting less entropy. The current DRBG implemantion does

 * not take RAND_DRBG_STRENGTH into account and sets the strength of the DRBG

 * to that of the cipher.

 * of the cipher by collecting less entropy. The current DRBG implementation

 * does not take RAND_DRBG_STRENGTH into account and sets the strength of the

 * DRBG to that of the cipher.

 *

 * RAND_DRBG_STRENGTH is currently only used for the legacy RAND

 * implementation.

 * NID_aes_256_ctr

 */

# define RAND_DRBG_STRENGTH             256

/* Default drbg type */

# define RAND_DRBG_TYPE                 NID_aes_256_ctr

/* Default drbg flags */

# define RAND_DRBG_FLAGS                0

    RAND_DRBG *drbg = NULL;

    TEST_CTX t;

    unsigned char buff[1024];

    unsigned int generate_counter_tmp;

    unsigned int reseed_counter_tmp;

    int ret = 0;

    if (!TEST_ptr(drbg = RAND_DRBG_new(0, 0, NULL)))

     * Entropy source tests

     */

    /* Test entropy source failure detecion: i.e. returns no data */

    /* Test entropy source failure detection: i.e. returns no data */

    t.entropylen = 0;

    if (TEST_int_le(RAND_DRBG_instantiate(drbg, td->pers, td->perslen), 0))

        goto err;

    /* Instantiate again with valid data */

    if (!instantiate(drbg, td, &t))

        goto err;

    generate_counter_tmp = drbg->generate_counter;

    drbg->generate_counter = drbg->reseed_interval;

    reseed_counter_tmp = drbg->reseed_gen_counter;

    drbg->reseed_gen_counter = drbg->reseed_interval;

    /* Generate output and check entropy has been requested for reseed */

    t.entropycnt = 0;

    if (!TEST_true(RAND_DRBG_generate(drbg, buff, td->exlen, 0,

                                      td->adin, td->adinlen))

            || !TEST_int_eq(t.entropycnt, 1)

            || !TEST_int_eq(drbg->generate_counter, generate_counter_tmp + 1)

            || !TEST_int_eq(drbg->reseed_gen_counter, reseed_counter_tmp + 1)

            || !uninstantiate(drbg))

        goto err;

    /* Test reseed counter works */

    if (!instantiate(drbg, td, &t))

        goto err;

    generate_counter_tmp = drbg->generate_counter;

    drbg->generate_counter = drbg->reseed_interval;

    reseed_counter_tmp = drbg->reseed_gen_counter;

    drbg->reseed_gen_counter = drbg->reseed_interval;

    /* Generate output and check entropy has been requested for reseed */

    t.entropycnt = 0;

    if (!TEST_true(RAND_DRBG_generate(drbg, buff, td->exlen, 0,

                                      td->adin, td->adinlen))

            || !TEST_int_eq(t.entropycnt, 1)

            || !TEST_int_eq(drbg->generate_counter, generate_counter_tmp + 1)

            || !TEST_int_eq(drbg->reseed_gen_counter, reseed_counter_tmp + 1)

            || !uninstantiate(drbg))

        goto err;

     */

    /* Test whether seed propagation is enabled */

    if (!TEST_int_ne(master->reseed_counter, 0)

        || !TEST_int_ne(public->reseed_counter, 0)

        || !TEST_int_ne(private->reseed_counter, 0))

    if (!TEST_int_ne(master->reseed_prop_counter, 0)

        || !TEST_int_ne(public->reseed_prop_counter, 0)

        || !TEST_int_ne(private->reseed_prop_counter, 0))

        return 0;

    /* Check whether the master DRBG's reseed counter is the largest one */

    if (!TEST_int_le(public->reseed_counter, master->reseed_counter)

        || !TEST_int_le(private->reseed_counter, master->reseed_counter))

    if (!TEST_int_le(public->reseed_prop_counter, master->reseed_prop_counter)

        || !TEST_int_le(private->reseed_prop_counter, master->reseed_prop_counter))

        return 0;

    /*

    if (expect_success == 1) {

        /* Test whether all three reseed counters are synchronized */

        if (!TEST_int_eq(public->reseed_counter, master->reseed_counter)

            || !TEST_int_eq(private->reseed_counter, master->reseed_counter))

        if (!TEST_int_eq(public->reseed_prop_counter, master->reseed_prop_counter)

            || !TEST_int_eq(private->reseed_prop_counter, master->reseed_prop_counter))

            return 0;

        /* Test whether reseed time of master DRBG is set correctly */

     * Test whether the public and private DRBG are both reseeded when their

     * reseed counters differ from the master's reseed counter.

     */

    master->reseed_counter++;

    master->reseed_prop_counter++;

    if (!TEST_true(test_drbg_reseed(1, master, public, private, 0, 1, 1)))

        goto error;

    reset_drbg_hook_ctx();

     * Test whether the public DRBG is reseeded when its reseed counter differs

     * from the master's reseed counter.

     */

    master->reseed_counter++;

    private->reseed_counter++;

    master->reseed_prop_counter++;

    private->reseed_prop_counter++;

    if (!TEST_true(test_drbg_reseed(1, master, public, private, 0, 1, 0)))

        goto error;

    reset_drbg_hook_ctx();

     * Test whether the private DRBG is reseeded when its reseed counter differs

     * from the master's reseed counter.

     */

    master->reseed_counter++;

    public->reseed_counter++;

    master->reseed_prop_counter++;

    public->reseed_prop_counter++;

    if (!TEST_true(test_drbg_reseed(1, master, public, private, 0, 0, 1)))

        goto error;

    reset_drbg_hook_ctx();

     * Test whether none of the DRBGs is reseed if the master fails to reseed

     */

    master_ctx.fail = 1;

    master->reseed_counter++;

    master->reseed_prop_counter++;

    RAND_add(rand_add_buf, sizeof(rand_add_buf), sizeof(rand_add_buf));

    if (!TEST_true(test_drbg_reseed(0, master, public, private, 0, 0, 0)))

        goto error;

    master->get_entropy = get_pool_entropy;

    master->cleanup_entropy = cleanup_pool_entropy;

    master->reseed_counter++;

    master->reseed_prop_counter++;

    RAND_DRBG_uninstantiate(master);

    memset(rand_add_buf, 0xCD, sizeof(rand_add_buf));

    RAND_add(rand_add_buf, sizeof(rand_add_buf), sizeof(rand_add_buf));