rng_8cpp_source.html

 // rng.cpp - written and placed in the public domain by Wei Dai

 #include "pch.h"

 #include "rng.h"
 #include "fips140.h"

 #include <time.h>
 #include <math.h>

 NAMESPACE_BEGIN(CryptoPP)

 // linear congruential generator
 // originally by William S. England

 // do not use for cryptographic purposes

 /*
 ** Original_numbers are the original published m and q in the
 ** ACM article above.  John Burton has furnished numbers for
 ** a reportedly better generator.  The new numbers are now
 ** used in this program by default.
 */

 #ifndef LCRNG_ORIGINAL_NUMBERS
 const word32 LC_RNG::m=2147483647L;
 const word32 LC_RNG::q=44488L;

 const word16 LC_RNG::a=(unsigned int)48271L;
 const word16 LC_RNG::r=3399;
 #else
 const word32 LC_RNG::m=2147483647L;
 const word32 LC_RNG::q=127773L;

 const word16 LC_RNG::a=16807;
 const word16 LC_RNG::r=2836;
 #endif

 void LC_RNG::GenerateBlock(byte *output, size_t size)
 {
         while (size--)
         {
                 word32 hi = seed/q;
                 word32 lo = seed%q;

                 long test = a*lo - r*hi;

                 if (test > 0)
                         seed = test;
                 else
                         seed = test+ m;

                 *output++ = byte((GETBYTE(seed, 0) ^ GETBYTE(seed, 1) ^ GETBYTE(seed, 2) ^ GETBYTE(seed, 3)));
         }
 }

 // ********************************************************

 #ifndef CRYPTOPP_IMPORTS

 X917RNG::X917RNG(BlockTransformation *c, const byte *seed, const byte *deterministicTimeVector)
         : m_cipher(c),
           m_size(m_cipher->BlockSize()),
           m_datetime(m_size),
           m_randseed(seed, m_size),
           m_lastBlock(m_size),
           m_deterministicTimeVector(deterministicTimeVector, deterministicTimeVector ? m_size : 0)
 {
         // Valgrind finding, http://github.com/weidai11/cryptopp/issues/105
         // Garbage in the tail creates a non-conforming X9.17 or X9.31 generator.
         if (m_size > 8)
         {
                 memset(m_datetime, 0x00, m_size);
                 memset(m_lastBlock, 0x00, m_size);
         }

         if (!deterministicTimeVector)
         {
                 time_t tstamp1 = time(0);
                 xorbuf(m_datetime, (byte *)&tstamp1, UnsignedMin(sizeof(tstamp1), m_size));
                 m_cipher->ProcessBlock(m_datetime);
                 clock_t tstamp2 = clock();
                 xorbuf(m_datetime, (byte *)&tstamp2, UnsignedMin(sizeof(tstamp2), m_size));
                 m_cipher->ProcessBlock(m_datetime);
         }

         // for FIPS 140-2
         GenerateBlock(m_lastBlock, m_size);
 }

 void X917RNG::GenerateIntoBufferedTransformation(BufferedTransformation &target, const std::string &channel, lword size)
 {
         while (size > 0)
         {
                 // calculate new enciphered timestamp
                 if (m_deterministicTimeVector.size())
                 {
                         m_cipher->ProcessBlock(m_deterministicTimeVector, m_datetime);
                         IncrementCounterByOne(m_deterministicTimeVector, m_size);
                 }
                 else
                 {
                         clock_t c = clock();
                         xorbuf(m_datetime, (byte *)&c, UnsignedMin(sizeof(c), m_size));
                         time_t t = time(NULL);
                         xorbuf(m_datetime+m_size-UnsignedMin(sizeof(t), m_size), (byte *)&t, UnsignedMin(sizeof(t), m_size));
                         m_cipher->ProcessBlock(m_datetime);
                 }

                 // combine enciphered timestamp with seed
                 xorbuf(m_randseed, m_datetime, m_size);

                 // generate a new block of random bytes
                 m_cipher->ProcessBlock(m_randseed);
                 if (memcmp(m_lastBlock, m_randseed, m_size) == 0)
                         throw SelfTestFailure("X917RNG: Continuous random number generator test failed.");

                 // output random bytes
                 size_t len = UnsignedMin(m_size, size);
                 target.ChannelPut(channel, m_randseed, len);
                 size -= len;

                 // compute new seed vector
                 memcpy(m_lastBlock, m_randseed, m_size);
                 xorbuf(m_randseed, m_datetime, m_size);
                 m_cipher->ProcessBlock(m_randseed);
         }
 }

 #endif

 MaurerRandomnessTest::MaurerRandomnessTest()
         : sum(0.0), n(0)
 {
         for (unsigned i=0; i<V; i++)
                 tab[i] = 0;
 }

 size_t MaurerRandomnessTest::Put2(const byte *inString, size_t length, int /*messageEnd*/, bool /*blocking*/)
 {
         while (length--)
         {
                 byte inByte = *inString++;
                 if (n >= Q)
                         sum += log(double(n - tab[inByte]));
                 tab[inByte] = n;
                 n++;
         }
         return 0;
 }

 double MaurerRandomnessTest::GetTestValue() const
 {
         if (BytesNeeded() > 0)
                 throw Exception(Exception::OTHER_ERROR, "MaurerRandomnessTest: " + IntToString(BytesNeeded()) + " more bytes of input needed");

         double fTu = (sum/(n-Q))/log(2.0);      // this is the test value defined by Maurer

         double value = fTu * 0.1392;            // arbitrarily normalize it to
         return value > 1.0 ? 1.0 : value;       // a number between 0 and 1
 }

 NAMESPACE_END
Exception
Base class for all exceptions thrown by the library.
Definition: cryptlib.h:140

X917RNG::m_datetime
SecByteBlock m_datetime
Definition: rng.h:74

byte
uint8_t byte
Definition: Common.h:57

MaurerRandomnessTest::BytesNeeded
unsigned int BytesNeeded() const
Provides the number of bytes of input is needed by the test.
Definition: rng.h:96

IncrementCounterByOne
void IncrementCounterByOne(byte *inout, unsigned int size)
Performs an addition with carry on a block of bytes.
Definition: misc.h:1029

word16
unsigned short word16
Definition: config.h:230

RandomNumberGenerator::GenerateBlock
virtual void GenerateBlock(byte *output, size_t size)
Generate random array of bytes.
Definition: cryptlib.cpp:326

BufferedTransformation::ChannelPut
size_t ChannelPut(const std::string &channel, byte inByte, bool blocking=true)
Input a byte for processing on a channel.
Definition: cryptlib.h:1864

NAMESPACE_BEGIN
#define NAMESPACE_BEGIN(x)
Definition: config.h:200

LC_RNG::seed
word32 seed
Definition: rng.h:35

test

MaurerRandomnessTest::n
unsigned int n
Definition: rng.h:105

SecBlock::size
size_type size() const
Provides the count of elements in the SecBlock.
Definition: secblock.h:524

Exception::OTHER_ERROR
Some other error occurred not belonging to other categories.
Definition: cryptlib.h:159

c
#define c(i)

X917RNG::m_lastBlock
SecByteBlock m_lastBlock
Definition: rng.h:75

MaurerRandomnessTest::tab
unsigned int tab[V]
Definition: rng.h:106

BufferedTransformation
Interface for buffered transformations.
Definition: cryptlib.h:1352

X917RNG::m_randseed
SecByteBlock m_randseed
Definition: rng.h:75

LC_RNG::a
static const word16 a
Definition: rng.h:39

benchmark::clock
best_clock::type clock
Definition: bench.h:48

X917RNG::m_size
const unsigned int m_size
Definition: rng.h:73

MaurerRandomnessTest::Put2
size_t Put2(const byte *inString, size_t length, int messageEnd, bool blocking)
Input multiple bytes for processing.
Definition: rng.cpp:139

MaurerRandomnessTest::sum
double sum
Definition: rng.h:104

SelfTestFailure
Exception thrown when a crypto algorithm is used after a self test fails.
Definition: fips140.h:23

BlockTransformation::ProcessBlock
void ProcessBlock(const byte *inBlock, byte *outBlock) const
Encrypt or decrypt a block.
Definition: cryptlib.h:758

GETBYTE
#define GETBYTE(x, y)
Definition: misc.h:610

pch.h

UnsignedMin
const T1 UnsignedMin(const T1 &a, const T2 &b)
Safe comparison of values that could be neagtive and incorrectly promoted.
Definition: misc.h:512

LC_RNG::GenerateBlock
void GenerateBlock(byte *output, size_t size)
Generate random array of bytes.
Definition: rng.cpp:39

rng.h
Miscellaneous classes for RNGs.

X917RNG::GenerateIntoBufferedTransformation
void GenerateIntoBufferedTransformation(BufferedTransformation &target, const std::string &channel, lword size)
Generate random bytes into a BufferedTransformation.
Definition: rng.cpp:91

sum
volatile double sum
Definition: Examples.cpp:23

xorbuf
void xorbuf(byte *buf, const byte *mask, size_t count)
Performs an XOR of a buffer with a mask.
Definition: misc.cpp:28

X917RNG::X917RNG
X917RNG(BlockTransformation *cipher, const byte *seed, const byte *deterministicTimeVector=0)
Construct a X917RNG.
Definition: rng.cpp:61

X917RNG::m_deterministicTimeVector
SecByteBlock m_deterministicTimeVector
Definition: rng.h:75

X917RNG::m_cipher
member_ptr< BlockTransformation > m_cipher
Definition: rng.h:72

fips140.h
Classes and functions for the FIPS 140-2 validated library.

size
uint8_t const size_t const size
Definition: sha3.h:20

memcpy
void * memcpy(void *a, const void *b, size_t c)
Definition: glibc_compat.cpp:17

dev::evmjit::byte
uint8_t byte
Definition: Common.h:10

IntToString
std::string IntToString(T value, unsigned int base=10)
Converts a value to a string.
Definition: misc.h:539

NAMESPACE_END
#define NAMESPACE_END
Definition: config.h:201

LC_RNG::q
static const word32 q
Definition: rng.h:38

CryptoPP

lword
word64 lword
Definition: config.h:245

BlockTransformation
Interface for the data processing part of block ciphers.
Definition: cryptlib.h:734

LC_RNG::m
static const word32 m
Definition: rng.h:37

MaurerRandomnessTest::V
Definition: rng.h:103

MaurerRandomnessTest::GetTestValue
double GetTestValue() const
Definition: rng.cpp:152

word32
unsigned int word32
Definition: config.h:231

LC_RNG::r
static const word16 r
Definition: rng.h:40

MaurerRandomnessTest::MaurerRandomnessTest
MaurerRandomnessTest()
Construct a MaurerRandomnessTest.
Definition: rng.cpp:132

MaurerRandomnessTest::Q
Definition: rng.h:103