zolfa
/
tendermint
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 221 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
6392 Commits
183 Branches
291 MiB
Tree: 24ae878b9f
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '24ae878b9f'
${ noResults }
tendermint/crypto/random.go

108 lines
2.6 KiB
Raw Normal View History

mv go-crypto files to crypto dir
6 years ago
fix import paths
6 years ago
mv go-crypto files to crypto dir
6 years ago
 
  1. package crypto
  2. 

  3. import (
  4. 	"crypto/aes"
  5. 	"crypto/cipher"
  6. 	crand "crypto/rand"
  7. 	"crypto/sha256"
  8. 	"encoding/hex"
  9. 	"io"
  10. 	"sync"
  11. 

  12. 	. "github.com/tendermint/tendermint/libs/common"
  13. )
  14. 

  15. var gRandInfo *randInfo
  16. 

  17. func init() {
  18. 	gRandInfo = &randInfo{}
  19. 	gRandInfo.MixEntropy(randBytes(32)) // Init

  20. }
  21. 

  22. // Mix additional bytes of randomness, e.g. from hardware, user-input, etc.

  23. // It is OK to call it multiple times.  It does not diminish security.

  24. func MixEntropy(seedBytes []byte) {
  25. 	gRandInfo.MixEntropy(seedBytes)
  26. }
  27. 

  28. // This only uses the OS's randomness

  29. func randBytes(numBytes int) []byte {
  30. 	b := make([]byte, numBytes)
  31. 	_, err := crand.Read(b)
  32. 	if err != nil {
  33. 		PanicCrisis(err)
  34. 	}
  35. 	return b
  36. }
  37. 

  38. // This uses the OS and the Seed(s).

  39. func CRandBytes(numBytes int) []byte {
  40. 	b := make([]byte, numBytes)
  41. 	_, err := gRandInfo.Read(b)
  42. 	if err != nil {
  43. 		PanicCrisis(err)
  44. 	}
  45. 	return b
  46. }
  47. 

  48. // CRandHex returns a hex encoded string that's floor(numDigits/2) * 2 long.

  49. //

  50. // Note: CRandHex(24) gives 96 bits of randomness that

  51. // are usually strong enough for most purposes.

  52. func CRandHex(numDigits int) string {
  53. 	return hex.EncodeToString(CRandBytes(numDigits / 2))
  54. }
  55. 

  56. // Returns a crand.Reader mixed with user-supplied entropy

  57. func CReader() io.Reader {
  58. 	return gRandInfo
  59. }
  60. 

  61. //--------------------------------------------------------------------------------

  62. 

  63. type randInfo struct {
  64. 	mtx          sync.Mutex
  65. 	seedBytes    [32]byte
  66. 	cipherAES256 cipher.Block
  67. 	streamAES256 cipher.Stream
  68. 	reader       io.Reader
  69. }
  70. 

  71. // You can call this as many times as you'd like.

  72. // XXX TODO review

  73. func (ri *randInfo) MixEntropy(seedBytes []byte) {
  74. 	ri.mtx.Lock()
  75. 	defer ri.mtx.Unlock()
  76. 	// Make new ri.seedBytes using passed seedBytes and current ri.seedBytes:

  77. 	// ri.seedBytes = sha256( seedBytes || ri.seedBytes )

  78. 	h := sha256.New()
  79. 	h.Write(seedBytes)
  80. 	h.Write(ri.seedBytes[:])
  81. 	hashBytes := h.Sum(nil)
  82. 	hashBytes32 := [32]byte{}
  83. 	copy(hashBytes32[:], hashBytes)
  84. 	ri.seedBytes = xorBytes32(ri.seedBytes, hashBytes32)
  85. 	// Create new cipher.Block

  86. 	var err error
  87. 	ri.cipherAES256, err = aes.NewCipher(ri.seedBytes[:])
  88. 	if err != nil {
  89. 		PanicSanity("Error creating AES256 cipher: " + err.Error())
  90. 	}
  91. 	// Create new stream

  92. 	ri.streamAES256 = cipher.NewCTR(ri.cipherAES256, randBytes(aes.BlockSize))
  93. 	// Create new reader

  94. 	ri.reader = &cipher.StreamReader{S: ri.streamAES256, R: crand.Reader}
  95. }
  96. 

  97. func (ri *randInfo) Read(b []byte) (n int, err error) {
  98. 	ri.mtx.Lock()
  99. 	defer ri.mtx.Unlock()
  100. 	return ri.reader.Read(b)
  101. }
  102. 

  103. func xorBytes32(bytesA [32]byte, bytesB [32]byte) (res [32]byte) {
  104. 	for i, b := range bytesA {
  105. 		res[i] = b ^ bytesB[i]
  106. 	}
  107. 	return res
  108. }