doc/dev/random_8h_source.html

// Copyright (c) 2009-2010 Satoshi Nakamoto

// Copyright (c) 2009-2016 The Bitcoin Core developers

// Distributed under the MIT software license, see the accompanying

// file COPYING or http://www.opensource.org/licenses/mit-license.php.


#ifndef BITCOIN_RANDOM_H

#define BITCOIN_RANDOM_H


#include <crypto/chacha20.h>

#include <crypto/common.h>

#include <span.h>

#include <uint256.h>


#include <chrono>

#include <cstdint>

#include <limits>


void GetRandBytes(Span<uint8_t> bytes) noexcept;

uint64_t GetRandInternal(uint64_t nMax) noexcept;

template <typename T>

T GetRand(T nMax = std::numeric_limits<T>::max()) noexcept {

    static_assert(std::is_integral<T>(), "T must be integral");

    static_assert(std::numeric_limits<T>::max() <=

                      std::numeric_limits<uint64_t>::max(),

                  "GetRand only supports up to uint64_t");

    return T(GetRandInternal(nMax));

}

template <typename D>

D GetRandomDuration(typename std::common_type<D>::type max) noexcept {

    // Having the compiler infer the template argument from the function

    // argument is dangerous, because the desired return value generally has a

    // different type than the function argument. So std::common_type is used to

    // force the call site to specify the type of the return value.


    assert(max.count() > 0);

    return D{GetRand(max.count())};

};

constexpr auto GetRandMicros = GetRandomDuration<std::chrono::microseconds>;

constexpr auto GetRandMillis = GetRandomDuration<std::chrono::milliseconds>;


std::chrono::microseconds

GetExponentialRand(std::chrono::microseconds now,

                   std::chrono::seconds average_interval);


uint256 GetRandHash() noexcept;


void GetStrongRandBytes(Span<uint8_t> bytes) noexcept;


void RandAddPeriodic() noexcept;


void RandAddEvent(const uint32_t event_info) noexcept;


class FastRandomContext {

private:

    bool requires_seed;

    ChaCha20 rng;


    uint8_t bytebuf[64];

    int bytebuf_size;


    uint64_t bitbuf;

    int bitbuf_size;


    void RandomSeed();


    void FillByteBuffer() {

        if (requires_seed) {

            RandomSeed();

        }

        rng.Keystream(bytebuf, sizeof(bytebuf));

        bytebuf_size = sizeof(bytebuf);

    }


    void FillBitBuffer() {

        bitbuf = rand64();

        bitbuf_size = 64;

    }


public:

    explicit FastRandomContext(bool fDeterministic = false) noexcept;


    explicit FastRandomContext(const uint256 &seed) noexcept;


    // Do not permit copying a FastRandomContext (move it, or create a new one

    // to get reseeded).

    FastRandomContext(const FastRandomContext &) = delete;

    FastRandomContext(FastRandomContext &&) = delete;

    FastRandomContext &operator=(const FastRandomContext &) = delete;


    FastRandomContext &operator=(FastRandomContext &&from) noexcept;


    uint64_t rand64() noexcept {

        if (bytebuf_size < 8) {

            FillByteBuffer();

        }

        uint64_t ret = ReadLE64(bytebuf + 64 - bytebuf_size);

        bytebuf_size -= 8;

        return ret;

    }


    uint64_t randbits(int bits) noexcept {

        if (bits == 0) {

            return 0;

        } else if (bits > 32) {

            return rand64() >> (64 - bits);

        } else {

            if (bitbuf_size < bits) {

                FillBitBuffer();

            }

            uint64_t ret = bitbuf & (~uint64_t(0) >> (64 - bits));

            bitbuf >>= bits;

            bitbuf_size -= bits;

            return ret;

        }

    }


    uint64_t randrange(uint64_t range) noexcept {

        assert(range);

        --range;

        int bits = CountBits(range);

        while (true) {

            uint64_t ret = randbits(bits);

            if (ret <= range) {

                return ret;

            }

        }

    }


    std::vector<uint8_t> randbytes(size_t len);


    uint32_t rand32() noexcept { return randbits(32); }


    uint160 rand160() noexcept;


    uint256 rand256() noexcept;


    bool randbool() noexcept { return randbits(1); }


    template <typename Tp>

    Tp rand_uniform_delay(const Tp &time, typename Tp::duration range) {

        using Dur = typename Tp::duration;

        Dur dur{range.count() > 0

                    ? /* interval [0..range) */ Dur{randrange(range.count())}

                : range.count() < 0

                    ? /* interval (range..0] */ -Dur{randrange(-range.count())}

                    :

                    /* interval [0..0] */ Dur{0}};

        return time + dur;

    }


    // Compatibility with the C++11 UniformRandomBitGenerator concept

    typedef uint64_t result_type;

    static constexpr uint64_t min() { return 0; }

    static constexpr uint64_t max() {

        return std::numeric_limits<uint64_t>::max();

    }

    inline uint64_t operator()() noexcept { return rand64(); }

};


template <typename I, typename R> void Shuffle(I first, I last, R &&rng) {

    while (first != last) {

        size_t j = rng.randrange(last - first);

        if (j) {

            using std::swap;

            swap(*first, *(first + j));

        }

        ++first;

    }

}


static const int NUM_OS_RANDOM_BYTES = 32;


void GetOSRand(uint8_t *ent32);


bool Random_SanityCheck();


void RandomInit();


#endif // BITCOIN_RANDOM_H

chacha20.h

ChaCha20
A class for ChaCha20 256-bit stream cipher developed by Daniel J.
Definition: chacha20.h:15

ChaCha20::Keystream
void Keystream(uint8_t *c, size_t bytes)
outputs the keystream of size <bytes> into
Definition: chacha20.cpp:79

FastRandomContext
Fast randomness source.
Definition: random.h:156

FastRandomContext::rand32
uint32_t rand32() noexcept
Generate a random 32-bit integer.
Definition: random.h:247

FastRandomContext::FillBitBuffer
void FillBitBuffer()
Definition: random.h:177

FastRandomContext::bitbuf
uint64_t bitbuf
Definition: random.h:164

FastRandomContext::rand_uniform_delay
Tp rand_uniform_delay(const Tp &time, typename Tp::duration range)
Return the time point advanced by a uniform random duration.
Definition: random.h:260

FastRandomContext::bytebuf_size
int bytebuf_size
Definition: random.h:162

FastRandomContext::rng
ChaCha20 rng
Definition: random.h:159

FastRandomContext::max
static constexpr uint64_t max()
Definition: random.h:274

FastRandomContext::bitbuf_size
int bitbuf_size
Definition: random.h:165

FastRandomContext::randbits
uint64_t randbits(int bits) noexcept
Generate a random (bits)-bit integer.
Definition: random.h:211

FastRandomContext::min
static constexpr uint64_t min()
Definition: random.h:273

FastRandomContext::result_type
uint64_t result_type
Definition: random.h:272

FastRandomContext::requires_seed
bool requires_seed
Definition: random.h:158

FastRandomContext::randrange
uint64_t randrange(uint64_t range) noexcept
Generate a random integer in the range [0..range).
Definition: random.h:231

FastRandomContext::operator()
uint64_t operator()() noexcept
Definition: random.h:277

FastRandomContext::FillByteBuffer
void FillByteBuffer()
Definition: random.h:169

Span
A Span is an object that can refer to a contiguous sequence of objects.
Definition: span.h:93

uint160
160-bit opaque blob.
Definition: uint256.h:117

uint256
256-bit opaque blob.
Definition: uint256.h:129

common.h

ReadLE64
static uint64_t ReadLE64(const uint8_t *ptr)
Definition: common.h:29

CountBits
static uint64_t CountBits(uint64_t x)
Return the smallest number n such that (x >> n) == 0 (or 64 if the highest bit in x is set.
Definition: common.h:82

GetExponentialRand
std::chrono::microseconds GetExponentialRand(std::chrono::microseconds now, std::chrono::seconds average_interval)
Return a timestamp in the future sampled from an exponential distribution (https://en....
Definition: random.cpp:794

GetRandomDuration
D GetRandomDuration(typename std::common_type< D >::type max) noexcept
Generate a uniform random duration in the range [0..max).
Definition: random.h:97

GetRandMicros
constexpr auto GetRandMicros
Definition: random.h:106

GetRandBytes
void GetRandBytes(Span< uint8_t > bytes) noexcept
Overall design of the RNG and entropy sources.
Definition: random.cpp:639

RandAddPeriodic
void RandAddPeriodic() noexcept
Gather entropy from various expensive sources, and feed them to the PRNG state.
Definition: random.cpp:645

GetRandMillis
constexpr auto GetRandMillis
Definition: random.h:107

GetRandInternal
uint64_t GetRandInternal(uint64_t nMax) noexcept
Generate a uniform random integer in the range [0..range).
Definition: random.cpp:655

Shuffle
void Shuffle(I first, I last, R &&rng)
More efficient than using std::shuffle on a FastRandomContext.
Definition: random.h:291

GetOSRand
void GetOSRand(uint8_t *ent32)
Get 32 bytes of system entropy.
Definition: random.cpp:319

Random_SanityCheck
bool Random_SanityCheck()
Check that OS randomness is available and returning the requested number of bytes.
Definition: random.cpp:706

GetRandHash
uint256 GetRandHash() noexcept
Definition: random.cpp:659

NUM_OS_RANDOM_BYTES
static const int NUM_OS_RANDOM_BYTES
Number of random bytes returned by GetOSRand.
Definition: random.h:308

RandomInit
void RandomInit()
Initialize global RNG state and log any CPU features that are used.
Definition: random.cpp:786

RandAddEvent
void RandAddEvent(const uint32_t event_info) noexcept
Gathers entropy from the low bits of the time at which events occur.
Definition: random.cpp:649

GetRand
T GetRand(T nMax=std::numeric_limits< T >::max()) noexcept
Generate a uniform random integer of type T in the range [0..nMax) nMax defaults to std::numeric_limi...
Definition: random.h:85

GetStrongRandBytes
void GetStrongRandBytes(Span< uint8_t > bytes) noexcept
Gather entropy from various sources, feed it into the internal PRNG, and generate random data using i...
Definition: random.cpp:642

span.h

uint256.h

assert
assert(!tx.IsCoinBase())