jmg
/
ed448goldilocks
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
5 Commits
2 Branches
1.6 MiB
 
 
 
 
 
Tree: ed6fdbf3c3
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'ed6fdbf3c3'
${ noResults }
ed448goldilocks/crandom.h

141 lines
4.0 KiB
Raw Blame History 

  1. /* Copyright (c) 2011 Stanford University.

  2.  * Copyright (c) 2014 Cryptography Research, Inc.

  3.  * Released under the MIT License.  See LICENSE.txt for license information.

  4.  */

  5. 

  6. /**

  7.  * @file crandom.h

  8.  * @author Mike Hamburg

  9.  * @brief A miniature version of the (as of yet incomplete) crandom project.

  10.  */

  11. 

  12. #ifndef __GOLDI_CRANDOM_H__

  13. #define __GOLDI_CRANDOM_H__ 1

  14. 

  15. #include <stdint.h>  /* for uint64_t */

  16. #include <fcntl.h>   /* for open */

  17. #include <errno.h>   /* for returning errors after open */

  18. #include <stdlib.h>  /* for abort */

  19. #include <string.h>  /* for memcpy */

  20. #include <strings.h> /* for bzero */

  21. #include <unistd.h>  /* for read */

  22. 

  23. /**

  24.  * @brief The state of a crandom generator.

  25.  *

  26.  * This object is opaque.  It is not protected by a lock, and so must

  27.  * not be accessed by multiple threads at the same time.

  28.  */

  29. struct crandom_state_t {

  30.     /** @privatesection */

  31.     unsigned char seed[32];

  32.     unsigned char buffer[96];

  33.     uint64_t ctr;

  34.     uint64_t magic;

  35.     unsigned int fill;

  36.     int reseed_countdown;

  37.     int reseed_interval;

  38.     int reseeds_mandatory;

  39.     int randomfd;

  40. } __attribute__((aligned(16))) ;

  41. 

  42. #ifdef __cplusplus

  43. extern "C" {

  44. #endif

  45. 

  46. /**

  47.  * Initialize a crandom state from the chosen file.

  48.  * 

  49.  * This function initializes a state from a given state file, or

  50.  * from a random device (eg. /dev/random or /dev/urandom).

  51.  *

  52.  * You must check the return value of this function.

  53.  *

  54.  * @param [out] state The crandom state variable to initalize.

  55.  * @param [in] filename The name of the seed file or random device.

  56.  * @param [in] reseed_interval The number of 96-byte blocks which can be

  57.  *        generated without reseeding.  Suggest 10000.

  58.  * @param [in] reseeds_mandatory If nonzero, call abort() if a reseed fails.

  59.  *        Suggest 1.

  60.  *

  61.  * @retval 0 Success.

  62.  * @retval Nonzero An error to be interpreted by strerror().

  63.  */

  64. int

  65. crandom_init_from_file (

  66.     struct crandom_state_t *state,

  67.     const char *filename,

  68.     int reseed_interval,

  69.     int reseeds_mandatory

  70. ) __attribute__((warn_unused_result));

  71. 

  72. 

  73. /**

  74.  * Initialize a crandom state from a buffer, for deterministic operation.

  75.  * 

  76.  * This function is used to initialize a crandom state deterministically,

  77.  * mainly for testing purposes.  It can also be used to expand a secret

  78.  * random value deterministically.

  79.  *

  80.  * @warning The crandom implementation is not guaranteed to be stable.

  81.  * That is, a later release might produce a different random stream from

  82.  * the same seed.

  83.  *

  84.  * @param [out] state The crandom state variable to initalize.

  85.  * @param [in] initial_seed The seed value.

  86.  */

  87. void

  88. crandom_init_from_buffer (

  89.     struct crandom_state_t *state,

  90.     const char initial_seed[32]

  91. );

  92. 

  93. /**

  94.  * Fill the output buffer with random data.

  95.  *

  96.  * This function uses the given crandom state to produce pseudorandom data

  97.  * in the output buffer.

  98.  *

  99.  * This function may perform reads from the state's random device if it needs

  100.  * to reseed.  This could block if that file is a blocking source, such as

  101.  * a pipe or /dev/random on Linux.  If reseeding fails and the state has

  102.  * reseeds_mandatory set, this function will call abort().  Otherwise, it will

  103.  * return an error code, but it will still randomize the buffer.

  104.  *

  105.  * If called on a corrupted, uninitialized or destroyed state, this function

  106.  * will abort().

  107.  *

  108.  * @warning This function is not thread-safe with respect to the state.  Don't

  109.  * call it from multiple threads with the same state at the same time.

  110.  *

  111.  * @param [inout] state The crandom state to use for generation.

  112.  * @param [out] output The buffer to fill with random data.

  113.  * @param [in] length The length of the buffer.

  114.  *

  115.  * @retval 0 Success.

  116.  * @retval Nonezero A non-mandatory reseed operation failed.

  117.  */

  118. int

  119. crandom_generate (

  120.     struct crandom_state_t *state,

  121.     unsigned char *output,

  122.     unsigned long long length

  123. );

  124. 

  125. /**

  126.  * Destroy the random state.  Further calls to crandom_generate() on that state

  127.  * will abort().

  128.  *

  129.  * @param [inout] state The state to be destroyed.

  130.  */

  131. void

  132. crandom_destroy (

  133.     struct crandom_state_t *state

  134. );

  135. 

  136. #ifdef __cplusplus

  137. }; /* extern "C" */

  138. #endif

  139. 

  140. #endif /* __GOLDI_CRANDOM_H__ */