mirror of
https://github.com/kvazar-network/kevacoin.git
synced 2025-01-25 22:34:27 +00:00
Switch FastRandomContext to ChaCha20
This commit is contained in:
parent
e04326fe66
commit
16329224e7
@ -57,8 +57,8 @@ BITCOIN_TESTS =\
|
|||||||
test/policyestimator_tests.cpp \
|
test/policyestimator_tests.cpp \
|
||||||
test/pow_tests.cpp \
|
test/pow_tests.cpp \
|
||||||
test/prevector_tests.cpp \
|
test/prevector_tests.cpp \
|
||||||
test/random_tests.cpp \
|
|
||||||
test/raii_event_tests.cpp \
|
test/raii_event_tests.cpp \
|
||||||
|
test/random_tests.cpp \
|
||||||
test/reverselock_tests.cpp \
|
test/reverselock_tests.cpp \
|
||||||
test/rpc_tests.cpp \
|
test/rpc_tests.cpp \
|
||||||
test/sanity_tests.cpp \
|
test/sanity_tests.cpp \
|
||||||
|
@ -351,8 +351,8 @@ CAddrInfo CAddrMan::Select_(bool newOnly)
|
|||||||
int nKBucket = RandomInt(ADDRMAN_TRIED_BUCKET_COUNT);
|
int nKBucket = RandomInt(ADDRMAN_TRIED_BUCKET_COUNT);
|
||||||
int nKBucketPos = RandomInt(ADDRMAN_BUCKET_SIZE);
|
int nKBucketPos = RandomInt(ADDRMAN_BUCKET_SIZE);
|
||||||
while (vvTried[nKBucket][nKBucketPos] == -1) {
|
while (vvTried[nKBucket][nKBucketPos] == -1) {
|
||||||
nKBucket = (nKBucket + insecure_rand.rand32()) % ADDRMAN_TRIED_BUCKET_COUNT;
|
nKBucket = (nKBucket + insecure_rand.randbits(ADDRMAN_TRIED_BUCKET_COUNT_LOG2)) % ADDRMAN_TRIED_BUCKET_COUNT;
|
||||||
nKBucketPos = (nKBucketPos + insecure_rand.rand32()) % ADDRMAN_BUCKET_SIZE;
|
nKBucketPos = (nKBucketPos + insecure_rand.randbits(ADDRMAN_BUCKET_SIZE_LOG2)) % ADDRMAN_BUCKET_SIZE;
|
||||||
}
|
}
|
||||||
int nId = vvTried[nKBucket][nKBucketPos];
|
int nId = vvTried[nKBucket][nKBucketPos];
|
||||||
assert(mapInfo.count(nId) == 1);
|
assert(mapInfo.count(nId) == 1);
|
||||||
@ -368,8 +368,8 @@ CAddrInfo CAddrMan::Select_(bool newOnly)
|
|||||||
int nUBucket = RandomInt(ADDRMAN_NEW_BUCKET_COUNT);
|
int nUBucket = RandomInt(ADDRMAN_NEW_BUCKET_COUNT);
|
||||||
int nUBucketPos = RandomInt(ADDRMAN_BUCKET_SIZE);
|
int nUBucketPos = RandomInt(ADDRMAN_BUCKET_SIZE);
|
||||||
while (vvNew[nUBucket][nUBucketPos] == -1) {
|
while (vvNew[nUBucket][nUBucketPos] == -1) {
|
||||||
nUBucket = (nUBucket + insecure_rand.rand32()) % ADDRMAN_NEW_BUCKET_COUNT;
|
nUBucket = (nUBucket + insecure_rand.randbits(ADDRMAN_NEW_BUCKET_COUNT_LOG2)) % ADDRMAN_NEW_BUCKET_COUNT;
|
||||||
nUBucketPos = (nUBucketPos + insecure_rand.rand32()) % ADDRMAN_BUCKET_SIZE;
|
nUBucketPos = (nUBucketPos + insecure_rand.randbits(ADDRMAN_BUCKET_SIZE_LOG2)) % ADDRMAN_BUCKET_SIZE;
|
||||||
}
|
}
|
||||||
int nId = vvNew[nUBucket][nUBucketPos];
|
int nId = vvNew[nUBucket][nUBucketPos];
|
||||||
assert(mapInfo.count(nId) == 1);
|
assert(mapInfo.count(nId) == 1);
|
||||||
|
@ -136,13 +136,13 @@ public:
|
|||||||
*/
|
*/
|
||||||
|
|
||||||
//! total number of buckets for tried addresses
|
//! total number of buckets for tried addresses
|
||||||
#define ADDRMAN_TRIED_BUCKET_COUNT 256
|
#define ADDRMAN_TRIED_BUCKET_COUNT_LOG2 8
|
||||||
|
|
||||||
//! total number of buckets for new addresses
|
//! total number of buckets for new addresses
|
||||||
#define ADDRMAN_NEW_BUCKET_COUNT 1024
|
#define ADDRMAN_NEW_BUCKET_COUNT_LOG2 10
|
||||||
|
|
||||||
//! maximum allowed number of entries in buckets for new and tried addresses
|
//! maximum allowed number of entries in buckets for new and tried addresses
|
||||||
#define ADDRMAN_BUCKET_SIZE 64
|
#define ADDRMAN_BUCKET_SIZE_LOG2 6
|
||||||
|
|
||||||
//! over how many buckets entries with tried addresses from a single group (/16 for IPv4) are spread
|
//! over how many buckets entries with tried addresses from a single group (/16 for IPv4) are spread
|
||||||
#define ADDRMAN_TRIED_BUCKETS_PER_GROUP 8
|
#define ADDRMAN_TRIED_BUCKETS_PER_GROUP 8
|
||||||
@ -171,6 +171,11 @@ public:
|
|||||||
//! the maximum number of nodes to return in a getaddr call
|
//! the maximum number of nodes to return in a getaddr call
|
||||||
#define ADDRMAN_GETADDR_MAX 2500
|
#define ADDRMAN_GETADDR_MAX 2500
|
||||||
|
|
||||||
|
//! Convenience
|
||||||
|
#define ADDRMAN_TRIED_BUCKET_COUNT (1 << ADDRMAN_TRIED_BUCKET_COUNT_LOG2)
|
||||||
|
#define ADDRMAN_NEW_BUCKET_COUNT (1 << ADDRMAN_NEW_BUCKET_COUNT_LOG2)
|
||||||
|
#define ADDRMAN_BUCKET_SIZE (1 << ADDRMAN_BUCKET_SIZE_LOG2)
|
||||||
|
|
||||||
/**
|
/**
|
||||||
* Stochastical (IP) address manager
|
* Stochastical (IP) address manager
|
||||||
*/
|
*/
|
||||||
|
@ -240,22 +240,16 @@ uint256 GetRandHash()
|
|||||||
return hash;
|
return hash;
|
||||||
}
|
}
|
||||||
|
|
||||||
FastRandomContext::FastRandomContext(bool fDeterministic)
|
void FastRandomContext::RandomSeed()
|
||||||
{
|
{
|
||||||
// The seed values have some unlikely fixed points which we avoid.
|
uint256 seed = GetRandHash();
|
||||||
if (fDeterministic) {
|
rng.SetKey(seed.begin(), 32);
|
||||||
Rz = Rw = 11;
|
requires_seed = false;
|
||||||
} else {
|
|
||||||
uint32_t tmp;
|
|
||||||
do {
|
|
||||||
GetRandBytes((unsigned char*)&tmp, 4);
|
|
||||||
} while (tmp == 0 || tmp == 0x9068ffffU);
|
|
||||||
Rz = tmp;
|
|
||||||
do {
|
|
||||||
GetRandBytes((unsigned char*)&tmp, 4);
|
|
||||||
} while (tmp == 0 || tmp == 0x464fffffU);
|
|
||||||
Rw = tmp;
|
|
||||||
}
|
}
|
||||||
|
|
||||||
|
FastRandomContext::FastRandomContext(const uint256& seed) : requires_seed(false), bytebuf_size(0), bitbuf_size(0)
|
||||||
|
{
|
||||||
|
rng.SetKey(seed.begin(), 32);
|
||||||
}
|
}
|
||||||
|
|
||||||
bool Random_SanityCheck()
|
bool Random_SanityCheck()
|
||||||
@ -288,3 +282,12 @@ bool Random_SanityCheck()
|
|||||||
} while (num_overwritten < NUM_OS_RANDOM_BYTES && tries < MAX_TRIES);
|
} while (num_overwritten < NUM_OS_RANDOM_BYTES && tries < MAX_TRIES);
|
||||||
return (num_overwritten == NUM_OS_RANDOM_BYTES); /* If this failed, bailed out after too many tries */
|
return (num_overwritten == NUM_OS_RANDOM_BYTES); /* If this failed, bailed out after too many tries */
|
||||||
}
|
}
|
||||||
|
|
||||||
|
FastRandomContext::FastRandomContext(bool fDeterministic) : requires_seed(!fDeterministic), bytebuf_size(0), bitbuf_size(0)
|
||||||
|
{
|
||||||
|
if (!fDeterministic) {
|
||||||
|
return;
|
||||||
|
}
|
||||||
|
uint256 seed;
|
||||||
|
rng.SetKey(seed.begin(), 32);
|
||||||
|
}
|
||||||
|
64
src/random.h
64
src/random.h
@ -6,6 +6,7 @@
|
|||||||
#ifndef BITCOIN_RANDOM_H
|
#ifndef BITCOIN_RANDOM_H
|
||||||
#define BITCOIN_RANDOM_H
|
#define BITCOIN_RANDOM_H
|
||||||
|
|
||||||
|
#include "crypto/chacha20.h"
|
||||||
#include "uint256.h"
|
#include "uint256.h"
|
||||||
|
|
||||||
#include <stdint.h>
|
#include <stdint.h>
|
||||||
@ -33,21 +34,68 @@ void GetStrongRandBytes(unsigned char* buf, int num);
|
|||||||
* This class is not thread-safe.
|
* This class is not thread-safe.
|
||||||
*/
|
*/
|
||||||
class FastRandomContext {
|
class FastRandomContext {
|
||||||
|
private:
|
||||||
|
bool requires_seed;
|
||||||
|
ChaCha20 rng;
|
||||||
|
|
||||||
|
unsigned char bytebuf[64];
|
||||||
|
int bytebuf_size;
|
||||||
|
|
||||||
|
uint64_t bitbuf;
|
||||||
|
int bitbuf_size;
|
||||||
|
|
||||||
|
void RandomSeed();
|
||||||
|
|
||||||
|
void FillByteBuffer()
|
||||||
|
{
|
||||||
|
if (requires_seed) {
|
||||||
|
RandomSeed();
|
||||||
|
}
|
||||||
|
rng.Output(bytebuf, sizeof(bytebuf));
|
||||||
|
bytebuf_size = sizeof(bytebuf);
|
||||||
|
}
|
||||||
|
|
||||||
|
void FillBitBuffer()
|
||||||
|
{
|
||||||
|
bitbuf = rand64();
|
||||||
|
bitbuf_size = 64;
|
||||||
|
}
|
||||||
|
|
||||||
public:
|
public:
|
||||||
explicit FastRandomContext(bool fDeterministic = false);
|
explicit FastRandomContext(bool fDeterministic = false);
|
||||||
|
|
||||||
uint32_t rand32() {
|
/** Initialize with explicit seed (only for testing) */
|
||||||
Rz = 36969 * (Rz & 65535) + (Rz >> 16);
|
explicit FastRandomContext(const uint256& seed);
|
||||||
Rw = 18000 * (Rw & 65535) + (Rw >> 16);
|
|
||||||
return (Rw << 16) + Rz;
|
/** Generate a random 64-bit integer. */
|
||||||
|
uint64_t rand64()
|
||||||
|
{
|
||||||
|
if (bytebuf_size < 8) FillByteBuffer();
|
||||||
|
uint64_t ret = ReadLE64(bytebuf + 64 - bytebuf_size);
|
||||||
|
bytebuf_size -= 8;
|
||||||
|
return ret;
|
||||||
}
|
}
|
||||||
|
|
||||||
bool randbool() {
|
/** Generate a random (bits)-bit integer. */
|
||||||
return rand32() & 1;
|
uint64_t randbits(int bits) {
|
||||||
|
if (bits == 0) {
|
||||||
|
return 0;
|
||||||
|
} else if (bits > 32) {
|
||||||
|
return rand64() >> (64 - bits);
|
||||||
|
} else {
|
||||||
|
if (bitbuf_size < bits) FillBitBuffer();
|
||||||
|
uint64_t ret = bitbuf & (~(uint64_t)0 >> (64 - bits));
|
||||||
|
bitbuf >>= bits;
|
||||||
|
bitbuf_size -= bits;
|
||||||
|
return ret;
|
||||||
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
uint32_t Rz;
|
/** Generate a random 32-bit integer. */
|
||||||
uint32_t Rw;
|
uint32_t rand32() { return randbits(32); }
|
||||||
|
|
||||||
|
/** Generate a random boolean. */
|
||||||
|
bool randbool() { return randbits(1); }
|
||||||
};
|
};
|
||||||
|
|
||||||
/* Number of random bytes returned by GetOSRand.
|
/* Number of random bytes returned by GetOSRand.
|
||||||
|
@ -203,10 +203,11 @@ BOOST_AUTO_TEST_CASE(addrman_select)
|
|||||||
BOOST_CHECK(addrman.size() == 7);
|
BOOST_CHECK(addrman.size() == 7);
|
||||||
|
|
||||||
// Test 12: Select pulls from new and tried regardless of port number.
|
// Test 12: Select pulls from new and tried regardless of port number.
|
||||||
BOOST_CHECK(addrman.Select().ToString() == "250.4.6.6:8333");
|
std::set<uint16_t> ports;
|
||||||
BOOST_CHECK(addrman.Select().ToString() == "250.3.2.2:9999");
|
for (int i = 0; i < 20; ++i) {
|
||||||
BOOST_CHECK(addrman.Select().ToString() == "250.3.3.3:9999");
|
ports.insert(addrman.Select().GetPort());
|
||||||
BOOST_CHECK(addrman.Select().ToString() == "250.4.4.4:8333");
|
}
|
||||||
|
BOOST_CHECK_EQUAL(ports.size(), 3);
|
||||||
}
|
}
|
||||||
|
|
||||||
BOOST_AUTO_TEST_CASE(addrman_new_collisions)
|
BOOST_AUTO_TEST_CASE(addrman_new_collisions)
|
||||||
|
@ -28,6 +28,7 @@ class prevector_tester {
|
|||||||
typedef typename pretype::size_type Size;
|
typedef typename pretype::size_type Size;
|
||||||
bool passed = true;
|
bool passed = true;
|
||||||
FastRandomContext rand_cache;
|
FastRandomContext rand_cache;
|
||||||
|
uint256 rand_seed;
|
||||||
|
|
||||||
|
|
||||||
template <typename A, typename B>
|
template <typename A, typename B>
|
||||||
@ -183,13 +184,12 @@ public:
|
|||||||
}
|
}
|
||||||
|
|
||||||
~prevector_tester() {
|
~prevector_tester() {
|
||||||
BOOST_CHECK_MESSAGE(passed, "insecure_rand_Rz: "
|
BOOST_CHECK_MESSAGE(passed, "insecure_rand: " + rand_seed.ToString());
|
||||||
<< rand_cache.Rz
|
|
||||||
<< ", insecure_rand_Rw: "
|
|
||||||
<< rand_cache.Rw);
|
|
||||||
}
|
}
|
||||||
|
|
||||||
prevector_tester() {
|
prevector_tester() {
|
||||||
seed_insecure_rand();
|
seed_insecure_rand();
|
||||||
|
rand_seed = insecure_rand_seed;
|
||||||
rand_cache = insecure_rand_ctx;
|
rand_cache = insecure_rand_ctx;
|
||||||
}
|
}
|
||||||
};
|
};
|
||||||
|
@ -15,5 +15,24 @@ BOOST_AUTO_TEST_CASE(osrandom_tests)
|
|||||||
BOOST_CHECK(Random_SanityCheck());
|
BOOST_CHECK(Random_SanityCheck());
|
||||||
}
|
}
|
||||||
|
|
||||||
BOOST_AUTO_TEST_SUITE_END()
|
BOOST_AUTO_TEST_CASE(fastrandom_tests)
|
||||||
|
{
|
||||||
|
// Check that deterministic FastRandomContexts are deterministic
|
||||||
|
FastRandomContext ctx1(true);
|
||||||
|
FastRandomContext ctx2(true);
|
||||||
|
|
||||||
|
BOOST_CHECK_EQUAL(ctx1.rand32(), ctx2.rand32());
|
||||||
|
BOOST_CHECK_EQUAL(ctx1.rand32(), ctx2.rand32());
|
||||||
|
BOOST_CHECK_EQUAL(ctx1.rand64(), ctx2.rand64());
|
||||||
|
BOOST_CHECK_EQUAL(ctx1.randbits(3), ctx2.randbits(3));
|
||||||
|
BOOST_CHECK_EQUAL(ctx1.randbits(7), ctx2.randbits(7));
|
||||||
|
BOOST_CHECK_EQUAL(ctx1.rand32(), ctx2.rand32());
|
||||||
|
BOOST_CHECK_EQUAL(ctx1.randbits(3), ctx2.randbits(3));
|
||||||
|
|
||||||
|
// Check that a nondeterministic ones are not
|
||||||
|
FastRandomContext ctx3;
|
||||||
|
FastRandomContext ctx4;
|
||||||
|
BOOST_CHECK(ctx3.rand64() != ctx4.rand64()); // extremely unlikely to be equal
|
||||||
|
}
|
||||||
|
|
||||||
|
BOOST_AUTO_TEST_SUITE_END()
|
||||||
|
@ -27,7 +27,8 @@
|
|||||||
#include <boost/filesystem.hpp>
|
#include <boost/filesystem.hpp>
|
||||||
#include <boost/thread.hpp>
|
#include <boost/thread.hpp>
|
||||||
|
|
||||||
FastRandomContext insecure_rand_ctx(true);
|
uint256 insecure_rand_seed = GetRandHash();
|
||||||
|
FastRandomContext insecure_rand_ctx(insecure_rand_seed);
|
||||||
|
|
||||||
extern bool fPrintToConsole;
|
extern bool fPrintToConsole;
|
||||||
extern void noui_connect();
|
extern void noui_connect();
|
||||||
|
@ -8,11 +8,17 @@
|
|||||||
|
|
||||||
#include "random.h"
|
#include "random.h"
|
||||||
|
|
||||||
|
extern uint256 insecure_rand_seed;
|
||||||
extern FastRandomContext insecure_rand_ctx;
|
extern FastRandomContext insecure_rand_ctx;
|
||||||
|
|
||||||
static inline void seed_insecure_rand(bool fDeterministic = false)
|
static inline void seed_insecure_rand(bool fDeterministic = false)
|
||||||
{
|
{
|
||||||
insecure_rand_ctx = FastRandomContext(fDeterministic);
|
if (fDeterministic) {
|
||||||
|
insecure_rand_seed = uint256();
|
||||||
|
} else {
|
||||||
|
insecure_rand_seed = GetRandHash();
|
||||||
|
}
|
||||||
|
insecure_rand_ctx = FastRandomContext(insecure_rand_seed);
|
||||||
}
|
}
|
||||||
|
|
||||||
static inline uint32_t insecure_rand(void)
|
static inline uint32_t insecure_rand(void)
|
||||||
|
Loading…
x
Reference in New Issue
Block a user