From e5b9cee8681dc45340321f759079b344a3b2676c Mon Sep 17 00:00:00 2001
From: Mounir IDRASSI <mounir.idrassi@idrix.fr>
Date: Thu, 7 Feb 2019 15:24:56 +0100
Subject: Windows: Add option to enable use of CPU RDRAND/RDSEED as source of
 entropy which is now disabled by default

---
 src/Driver/DriveFilter.c | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

(limited to 'src/Driver/DriveFilter.c')

diff --git a/src/Driver/DriveFilter.c b/src/Driver/DriveFilter.c
index a02ca3e5..6228009f 100644
--- a/src/Driver/DriveFilter.c
+++ b/src/Driver/DriveFilter.c
@@ -1535,10 +1535,11 @@ static VOID SetupThreadProc (PVOID threadArg)
 	KeQuerySystemTime( &iSeed );
 	WHIRLPOOL_init (&tctx);
 	WHIRLPOOL_add ((unsigned char *) &(iSeed.QuadPart), sizeof(iSeed.QuadPart), &tctx);
-	// use RDSEED or RDRAND from CPU as source of entropy if present
-	if (	(HasRDSEED() && RDSEED_getBytes (digest, sizeof (digest)))
+	// use RDSEED or RDRAND from CPU as source of entropy if enabled
+	if (	IsCpuRngEnabled() && 
+		(	(HasRDSEED() && RDSEED_getBytes (digest, sizeof (digest)))
 		||	(HasRDRAND() && RDRAND_getBytes (digest, sizeof (digest)))
-		)
+		))
 	{
 		WHIRLPOOL_add (digest, sizeof(digest), &tctx);
 	}
-- 
cgit v1.2.3