zolfa
/
tendermint
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 221 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
260 Commits
183 Branches
291 MiB
Tree: 906331a8d1
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '906331a8d1'
${ noResults }
tendermint/random.go

103 lines
2.4 KiB
Raw Normal View History

Add seed-able cryptographic random.
9 years ago
update paths
8 years ago
Add seed-able cryptographic random.
9 years ago
s/Seed/MixEntropy/g
9 years ago
Add seed-able cryptographic random.
9 years ago
s/Seed/MixEntropy/g
9 years ago
Add seed-able cryptographic random.
9 years ago
CRandHex: fix up doc to mention length of digits The previous doc seemed misleading and was out of date i.e. RandHex(24) not CRandHex. Anyways provide a doc of what the function does in relation to the length of digits of the hex value returned i.e. floor(numDigits / 2) * 2 so the even lowest number e.g: * len(CRandHex(5)) = 4 * len(CRandHex(4)) = 4
7 years ago
Add seed-able cryptographic random.
9 years ago
s/Seed/MixEntropy/g
9 years ago
Add seed-able cryptographic random.
9 years ago
 
  1. package crypto
  2. 

  3. import (
  4. 	"crypto/aes"
  5. 	"crypto/cipher"
  6. 	crand "crypto/rand"
  7. 	"encoding/hex"
  8. 	"io"
  9. 	"sync"
  10. 

  11. 	. "github.com/tendermint/tmlibs/common"
  12. )
  13. 

  14. var gRandInfo *randInfo
  15. 

  16. func init() {
  17. 	gRandInfo = &randInfo{}
  18. 	gRandInfo.MixEntropy(randBytes(32)) // Init

  19. }
  20. 

  21. // Mix additional bytes of randomness, e.g. from hardware, user-input, etc.

  22. // It is OK to call it multiple times.  It does not diminish security.

  23. func MixEntropy(seedBytes []byte) {
  24. 	gRandInfo.MixEntropy(seedBytes)
  25. }
  26. 

  27. // This only uses the OS's randomness

  28. func randBytes(numBytes int) []byte {
  29. 	b := make([]byte, numBytes)
  30. 	_, err := crand.Read(b)
  31. 	if err != nil {
  32. 		PanicCrisis(err)
  33. 	}
  34. 	return b
  35. }
  36. 

  37. // This uses the OS and the Seed(s).

  38. func CRandBytes(numBytes int) []byte {
  39. 	b := make([]byte, numBytes)
  40. 	_, err := gRandInfo.Read(b)
  41. 	if err != nil {
  42. 		PanicCrisis(err)
  43. 	}
  44. 	return b
  45. }
  46. 

  47. // CRandHex returns a hex encoded string that's floor(numDigits/2) * 2 long.

  48. //

  49. // Note: CRandHex(24) gives 96 bits of randomness that

  50. // are usually strong enough for most purposes.

  51. func CRandHex(numDigits int) string {
  52. 	return hex.EncodeToString(CRandBytes(numDigits / 2))
  53. }
  54. 

  55. // Returns a crand.Reader mixed with user-supplied entropy

  56. func CReader() io.Reader {
  57. 	return gRandInfo
  58. }
  59. 

  60. //--------------------------------------------------------------------------------

  61. 

  62. type randInfo struct {
  63. 	mtx          sync.Mutex
  64. 	seedBytes    [32]byte
  65. 	cipherAES256 cipher.Block
  66. 	streamAES256 cipher.Stream
  67. 	reader       io.Reader
  68. }
  69. 

  70. // You can call this as many times as you'd like.

  71. // XXX TODO review

  72. func (ri *randInfo) MixEntropy(seedBytes []byte) {
  73. 	ri.mtx.Lock()
  74. 	defer ri.mtx.Unlock()
  75. 	// Make new ri.seedBytes

  76. 	hashBytes := Sha256(seedBytes)
  77. 	hashBytes32 := [32]byte{}
  78. 	copy(hashBytes32[:], hashBytes)
  79. 	ri.seedBytes = xorBytes32(ri.seedBytes, hashBytes32)
  80. 	// Create new cipher.Block

  81. 	var err error
  82. 	ri.cipherAES256, err = aes.NewCipher(ri.seedBytes[:])
  83. 	if err != nil {
  84. 		PanicSanity("Error creating AES256 cipher: " + err.Error())
  85. 	}
  86. 	// Create new stream

  87. 	ri.streamAES256 = cipher.NewCTR(ri.cipherAES256, randBytes(aes.BlockSize))
  88. 	// Create new reader

  89. 	ri.reader = &cipher.StreamReader{S: ri.streamAES256, R: crand.Reader}
  90. }
  91. 

  92. func (ri *randInfo) Read(b []byte) (n int, err error) {
  93. 	ri.mtx.Lock()
  94. 	defer ri.mtx.Unlock()
  95. 	return ri.reader.Read(b)
  96. }
  97. 

  98. func xorBytes32(bytesA [32]byte, bytesB [32]byte) (res [32]byte) {
  99. 	for i, b := range bytesA {
  100. 		res[i] = b ^ bytesB[i]
  101. 	}
  102. 	return res
  103. }