move rand functions from util to new random.h/.cpp

11 years ago · 6354935c48
16 changed files with 220 additions and 185 deletions
--- a/src/Makefile.am
+++ b/src/Makefile.am
@ -91,6 +91,7 @@ BITCOIN_CORE_H = \
  noui.h \
  pow.h \
  protocol.h \
  random.h \
  rpcclient.h \
  rpcprotocol.h \
  rpcserver.h \
@ -197,14 +198,15 @@ libbitcoin_common_a_SOURCES = \
 # backward-compatibility objects and their sanity checks are linked.
 libbitcoin_util_a_CPPFLAGS = $(BITCOIN_INCLUDES)
 libbitcoin_util_a_SOURCES = \
  compat/glibc_sanity.cpp \
  compat/glibcxx_sanity.cpp \
  chainparamsbase.cpp \
  random.cpp \
  rpcprotocol.cpp \
  sync.cpp \
  uint256.cpp \
  util.cpp \
  version.cpp \
  compat/glibc_sanity.cpp \
  compat/glibcxx_sanity.cpp \
  $(BITCOIN_CORE_H)
 if GLIBC_BACK_COMPAT
--- a/src/addrman.h
+++ b/src/addrman.h
@ -7,6 +7,7 @@
 #include "netbase.h"
 #include "protocol.h"
 #include "random.h"
 #include "sync.h"
 #include "timedata.h"
 #include "util.h"
--- a/src/chainparams.cpp
+++ b/src/chainparams.cpp
@ -6,6 +6,7 @@
 #include "chainparams.h"
 #include "assert.h"
 #include "random.h"
 #include "util.h"
 #include <boost/assign/list_of.hpp>
--- a/src/net.h
+++ b/src/net.h
@ -13,6 +13,7 @@
 #include "mruset.h"
 #include "netbase.h"
 #include "protocol.h"
 #include "random.h"
 #include "sync.h"
 #include "uint256.h"
 #include "util.h"
@ -26,7 +27,6 @@
 #include <boost/foreach.hpp>
 #include <boost/signals2/signal.hpp>
 #include <openssl/rand.h>
 class CAddrMan;
 class CBlockIndex;
--- a/src/random.cpp
+++ b/src/random.cpp
@ -0,0 +1,140 @@
 // Copyright (c) 2009-2010 Satoshi Nakamoto
 // Copyright (c) 2009-2014 The Bitcoin developers
 // Distributed under the MIT/X11 software license, see the accompanying
 // file COPYING or http://www.opensource.org/licenses/mit-license.php.
 #include "random.h"
 #ifdef WIN32
 #include "compat.h" // for Windows API
 #endif
 #include "util.h" // for LogPrint()
 #ifndef WIN32
 #include <sys/time.h>
 #endif
 #include <cstring> // for memset()
 #include <openssl/crypto.h>
 #include <openssl/err.h>
 #include <openssl/rand.h>
 static inline int64_t GetPerformanceCounter()
 {
    int64_t nCounter = 0;
 #ifdef WIN32
    QueryPerformanceCounter((LARGE_INTEGER*)&nCounter);
 #else
    timeval t;
    gettimeofday(&t, NULL);
    nCounter = (int64_t)(t.tv_sec * 1000000 + t.tv_usec);
 #endif
    return nCounter;
 }
 void RandAddSeed()
 {
    // Seed with CPU performance counter
    int64_t nCounter = GetPerformanceCounter();
    RAND_add(&nCounter, sizeof(nCounter), 1.5);
    memset(&nCounter, 0, sizeof(nCounter));
 }
 void RandAddSeedPerfmon()
 {
    RandAddSeed();
    // This can take up to 2 seconds, so only do it every 10 minutes
    static int64_t nLastPerfmon;
    if (GetTime() < nLastPerfmon + 10 * 60)
        return;
    nLastPerfmon = GetTime();
 #ifdef WIN32
    // Don't need this on Linux, OpenSSL automatically uses /dev/urandom
    // Seed with the entire set of perfmon data
    std::vector <unsigned char> vData(250000,0);
    long ret = 0;
    unsigned long nSize = 0;
    const size_t nMaxSize = 10000000; // Bail out at more than 10MB of performance data
    while (true)
    {
        nSize = vData.size();
        ret = RegQueryValueExA(HKEY_PERFORMANCE_DATA, "Global", NULL, NULL, begin_ptr(vData), &nSize);
        if (ret != ERROR_MORE_DATA || vData.size() >= nMaxSize)
            break;
        vData.resize(std::max((vData.size()*3)/2, nMaxSize)); // Grow size of buffer exponentially
    }
    RegCloseKey(HKEY_PERFORMANCE_DATA);
    if (ret == ERROR_SUCCESS)
    {
        RAND_add(begin_ptr(vData), nSize, nSize/100.0);
        OPENSSL_cleanse(begin_ptr(vData), nSize);
        LogPrint("rand", "%s: %lu bytes\n", __func__, nSize);
    } else {
        static bool warned = false; // Warn only once
        if (!warned)
        {
            LogPrintf("%s: Warning: RegQueryValueExA(HKEY_PERFORMANCE_DATA) failed with code %i\n", __func__, ret);
            warned = true;
        }
    }
 #endif
 }
 bool GetRandBytes(unsigned char *buf, int num)
 {
    if (RAND_bytes(buf, num) != 1) {
        LogPrintf("%s: OpenSSL RAND_bytes() failed with error: %s\n", __func__, ERR_error_string(ERR_get_error(), NULL));
        return false;
    }
    return true;
 }
 uint64_t GetRand(uint64_t nMax)
 {
    if (nMax == 0)
        return 0;
    // The range of the random source must be a multiple of the modulus
    // to give every possible output value an equal possibility
    uint64_t nRange = (std::numeric_limits<uint64_t>::max() / nMax) * nMax;
    uint64_t nRand = 0;
    do {
        GetRandBytes((unsigned char*)&nRand, sizeof(nRand));
    } while (nRand >= nRange);
    return (nRand % nMax);
 }
 int GetRandInt(int nMax)
 {
    return GetRand(nMax);
 }
 uint256 GetRandHash()
 {
    uint256 hash;
    GetRandBytes((unsigned char*)&hash, sizeof(hash));
    return hash;
 }
 uint32_t insecure_rand_Rz = 11;
 uint32_t insecure_rand_Rw = 11;
 void seed_insecure_rand(bool fDeterministic)
 {
    // The seed values have some unlikely fixed points which we avoid.
    if(fDeterministic)
    {
        insecure_rand_Rz = insecure_rand_Rw = 11;
    } else {
        uint32_t tmp;
        do {
            GetRandBytes((unsigned char*)&tmp, 4);
        } while(tmp == 0 || tmp == 0x9068ffffU);
        insecure_rand_Rz = tmp;
        do {
            GetRandBytes((unsigned char*)&tmp, 4);
        } while(tmp == 0 || tmp == 0x464fffffU);
        insecure_rand_Rw = tmp;
    }
 }
--- a/src/random.h
+++ b/src/random.h
@ -0,0 +1,49 @@
 // Copyright (c) 2009-2010 Satoshi Nakamoto
 // Copyright (c) 2009-2014 The Bitcoin developers
 // Distributed under the MIT/X11 software license, see the accompanying
 // file COPYING or http://www.opensource.org/licenses/mit-license.php.
 #ifndef BITCOIN_RANDOM_H
 #define BITCOIN_RANDOM_H
 #include "uint256.h"
 #include <stdint.h>
 /**
 * Seed OpenSSL PRNG with additional entropy data
 */
 void RandAddSeed();
 void RandAddSeedPerfmon();
 /**
 * Functions to gather random data via the OpenSSL PRNG
 */
 bool GetRandBytes(unsigned char *buf, int num);
 uint64_t GetRand(uint64_t nMax);
 int GetRandInt(int nMax);
 uint256 GetRandHash();
 /**
 * Seed insecure_rand using the random pool.
 * @param Deterministic Use a determinstic seed
 */
 void seed_insecure_rand(bool fDeterministic = false);
 /**
 * MWC RNG of George Marsaglia
 * This is intended to be fast. It has a period of 2^59.3, though the
 * least significant 16 bits only have a period of about 2^30.1.
 *
 * @return random value
 */
 extern uint32_t insecure_rand_Rz;
 extern uint32_t insecure_rand_Rw;
 static inline uint32_t insecure_rand(void)
 {
    insecure_rand_Rz = 36969 * (insecure_rand_Rz & 65535) + (insecure_rand_Rz >> 16);
    insecure_rand_Rw = 18000 * (insecure_rand_Rw & 65535) + (insecure_rand_Rw >> 16);
    return (insecure_rand_Rw << 16) + insecure_rand_Rz;
 }
 #endif // BITCOIN_RANDOM_H
--- a/src/script.cpp
+++ b/src/script.cpp
@ -5,13 +5,14 @@
 #include "script.h"
 #include "crypto/ripemd160.h"
 #include "crypto/sha1.h"
 #include "crypto/sha2.h"
 #include "core.h"
 #include "hash.h"
 #include "key.h"
 #include "keystore.h"
-#include "crypto/sha1.h"
+#include "random.h"
 #include "crypto/sha2.h"
 #include "crypto/ripemd160.h"
 #include "sync.h"
 #include "uint256.h"
 #include "util.h"
@ -1097,7 +1098,6 @@ uint256 SignatureHash(const CScript &scriptCode, const CTransaction& txTo, unsig
 // Valid signature cache, to avoid doing expensive ECDSA signature checking
 // twice for every transaction (once when accepted into memory pool, and
 // again when accepted into the block chain)
 class CSignatureCache
 {
 private:
--- a/src/test/canonical_tests.cpp
+++ b/src/test/canonical_tests.cpp
@ -6,12 +6,11 @@
 // Unit tests for canonical signatures
 //
 #include "script.h"
 #include "util.h"
 #include "data/sig_noncanonical.json.h"
 #include "data/sig_canonical.json.h"
 #include "random.h"
 #include "script.h"
 #include "util.h"
 #include <boost/foreach.hpp>
 #include <boost/test/unit_test.hpp>
@ -21,7 +20,6 @@
 using namespace std;
 using namespace json_spirit;
 // In script_tests.cpp
 extern Array read_json(const std::string& jsondata);
--- a/src/test/crypto_tests.cpp
+++ b/src/test/crypto_tests.cpp
@ -5,6 +5,7 @@
 #include "crypto/ripemd160.h"
 #include "crypto/sha1.h"
 #include "crypto/sha2.h"
 #include "random.h"
 #include "util.h"
 #include <vector>
--- a/src/test/mruset_tests.cpp
+++ b/src/test/mruset_tests.cpp
@ -4,6 +4,7 @@
 #include "mruset.h"
 #include "random.h"
 #include "util.h"
 #include <set>
--- a/src/test/sighash_tests.cpp
+++ b/src/test/sighash_tests.cpp
@ -2,15 +2,16 @@
 // Distributed under the MIT/X11 software license, see the accompanying
 // file COPYING or http://www.opensource.org/licenses/mit-license.php.
-#include <boost/test/unit_test.hpp>
+#include "data/sighash.json.h"
 #include <iostream>
 #include "main.h"
-#include "util.h"
+#include "random.h"
 #include "serialize.h"
 #include "util.h"
 #include "version.h"
 #include "data/sighash.json.h"
 #include <iostream>
 #include <boost/test/unit_test.hpp>
 #include "json/json_spirit_reader_template.h"
 #include "json/json_spirit_utils.h"
 #include "json/json_spirit_writer_template.h"
@ -211,4 +212,3 @@ BOOST_AUTO_TEST_CASE(sighash_from_data)
    }
 }
 BOOST_AUTO_TEST_SUITE_END()
--- a/src/test/skiplist_tests.cpp
+++ b/src/test/skiplist_tests.cpp
@ -2,11 +2,13 @@
 // Distributed under the MIT/X11 software license, see the accompanying
 // file COPYING or http://www.opensource.org/licenses/mit-license.php.
 #include <boost/test/unit_test.hpp>
 #include <vector>
 #include "main.h"
 #include "random.h"
 #include "util.h"
 #include <vector>
 #include <boost/test/unit_test.hpp>
 #define SKIPLIST_LENGTH 300000
@ -98,4 +100,3 @@ BOOST_AUTO_TEST_CASE(getlocator_test)
 }
 BOOST_AUTO_TEST_SUITE_END()
--- a/src/test/test_bitcoin.cpp
+++ b/src/test/test_bitcoin.cpp
@ -4,9 +4,8 @@
 #define BOOST_TEST_MODULE Bitcoin Test Suite
 #include "main.h"
 #include "random.h"
 #include "txdb.h"
 #include "ui_interface.h"
 #include "util.h"
@ -89,4 +88,3 @@ bool ShutdownRequested()
 {
  return false;
 }
--- a/src/test/util_tests.cpp
+++ b/src/test/util_tests.cpp
@ -4,6 +4,7 @@
 #include "util.h"
 #include "random.h"
 #include "sync.h"
 #include <stdint.h>
--- a/src/util.cpp
+++ b/src/util.cpp
@ -6,6 +6,7 @@
 #include "util.h"
 #include "chainparamsbase.h"
 #include "random.h"
 #include "sync.h"
 #include "uint256.h"
 #include "version.h"
@ -69,7 +70,6 @@
 #include <boost/program_options/detail/config_file.hpp>
 #include <boost/program_options/parsers.hpp>
 #include <openssl/crypto.h>
 #include <openssl/err.h>
 #include <openssl/rand.h>
 // Work around clang compilation problem in Boost 1.46:
@ -142,92 +142,6 @@ public:
 }
 instance_of_cinit;
 bool GetRandBytes(unsigned char *buf, int num)
 {
    if (RAND_bytes(buf, num) == 0) {
        LogPrint("rand", "%s : OpenSSL RAND_bytes() failed with error: %s\n", __func__, ERR_error_string(ERR_get_error(), NULL));
        return false;
    }
    return true;
 }
 void RandAddSeed()
 {
    // Seed with CPU performance counter
    int64_t nCounter = GetPerformanceCounter();
    RAND_add(&nCounter, sizeof(nCounter), 1.5);
    memset(&nCounter, 0, sizeof(nCounter));
 }
 void RandAddSeedPerfmon()
 {
    RandAddSeed();
    // This can take up to 2 seconds, so only do it every 10 minutes
    static int64_t nLastPerfmon;
    if (GetTime() < nLastPerfmon + 10 * 60)
        return;
    nLastPerfmon = GetTime();
 #ifdef WIN32
    // Don't need this on Linux, OpenSSL automatically uses /dev/urandom
    // Seed with the entire set of perfmon data
    std::vector <unsigned char> vData(250000,0);
    long ret = 0;
    unsigned long nSize = 0;
    const size_t nMaxSize = 10000000; // Bail out at more than 10MB of performance data
    while (true)
    {
        nSize = vData.size();
        ret = RegQueryValueExA(HKEY_PERFORMANCE_DATA, "Global", NULL, NULL, begin_ptr(vData), &nSize);
        if (ret != ERROR_MORE_DATA || vData.size() >= nMaxSize)
            break;
        vData.resize(std::max((vData.size()*3)/2, nMaxSize)); // Grow size of buffer exponentially
    }
    RegCloseKey(HKEY_PERFORMANCE_DATA);
    if (ret == ERROR_SUCCESS)
    {
        RAND_add(begin_ptr(vData), nSize, nSize/100.0);
        OPENSSL_cleanse(begin_ptr(vData), nSize);
        LogPrint("rand", "%s: %lu bytes\n", __func__, nSize);
    } else {
        static bool warned = false; // Warn only once
        if (!warned)
        {
            LogPrintf("%s: Warning: RegQueryValueExA(HKEY_PERFORMANCE_DATA) failed with code %i\n", __func__, ret);
            warned = true;
        }
    }
 #endif
 }
 uint64_t GetRand(uint64_t nMax)
 {
    if (nMax == 0)
        return 0;
    // The range of the random source must be a multiple of the modulus
    // to give every possible output value an equal possibility
    uint64_t nRange = (std::numeric_limits<uint64_t>::max() / nMax) * nMax;
    uint64_t nRand = 0;
    do {
        GetRandBytes((unsigned char*)&nRand, sizeof(nRand));
    } while (nRand >= nRange);
    return (nRand % nMax);
 }
 int GetRandInt(int nMax)
 {
    return GetRand(nMax);
 }
 uint256 GetRandHash()
 {
    uint256 hash;
    GetRandBytes((unsigned char*)&hash, sizeof(hash));
    return hash;
 }
 // LogPrintf() has been broken a couple of times now
 // by well-meaning people adding mutexes in the most straightforward way.
 // It breaks because it may be called by global destructors during shutdown.
@ -1195,27 +1109,6 @@ void SetMockTime(int64_t nMockTimeIn)
    nMockTime = nMockTimeIn;
 }
 uint32_t insecure_rand_Rz = 11;
 uint32_t insecure_rand_Rw = 11;
 void seed_insecure_rand(bool fDeterministic)
 {
    // The seed values have some unlikely fixed points which we avoid.
    if(fDeterministic)
    {
        insecure_rand_Rz = insecure_rand_Rw = 11;
    } else {
        uint32_t tmp;
        do {
            GetRandBytes((unsigned char*)&tmp, 4);
        } while(tmp == 0 || tmp == 0x9068ffffU);
        insecure_rand_Rz = tmp;
        do {
            GetRandBytes((unsigned char*)&tmp, 4);
        } while(tmp == 0 || tmp == 0x464fffffU);
        insecure_rand_Rw = tmp;
    }
 }
 string FormatVersion(int nVersion)
 {
    if (nVersion%100 == 0)
--- a/src/util.h
+++ b/src/util.h
@ -90,8 +90,6 @@ inline void MilliSleep(int64_t n)
 #endif
 }
 extern std::map<std::string, std::string> mapArgs;
 extern std::map<std::string, std::vector<std::string> > mapMultiArgs;
 extern bool fDebug;
@ -103,9 +101,6 @@ extern bool fLogTimestamps;
 extern bool fLogIPs;
 extern volatile bool fReopenDebugLog;
 bool GetRandBytes(unsigned char *buf, int num);
 void RandAddSeed();
 void RandAddSeedPerfmon();
 void SetupEnvironment();
 /* Return true if log accepts specified category */
@ -188,23 +183,12 @@ boost::filesystem::path GetSpecialFolderPath(int nFolder, bool fCreate = true);
 #endif
 boost::filesystem::path GetTempPath();
 void ShrinkDebugFile();
 int GetRandInt(int nMax);
 uint64_t GetRand(uint64_t nMax);
 uint256 GetRandHash();
 int64_t GetTime();
 void SetMockTime(int64_t nMockTimeIn);
 std::string FormatFullVersion();
 std::string FormatSubVersion(const std::string& name, int nClientVersion, const std::vector<std::string>& comments);
 void runCommand(std::string strCommand);
 inline std::string i64tostr(int64_t n)
 {
    return strprintf("%d", n);
@ -290,19 +274,6 @@ inline std::string HexStr(const T& vch, bool fSpaces=false)
 */
 std::string FormatParagraph(const std::string in, size_t width=79, size_t indent=0);
 inline int64_t GetPerformanceCounter()
 {
    int64_t nCounter = 0;
 #ifdef WIN32
    QueryPerformanceCounter((LARGE_INTEGER*)&nCounter);
 #else
    timeval t;
    gettimeofday(&t, NULL);
    nCounter = (int64_t) t.tv_sec * 1000000 + t.tv_usec;
 #endif
    return nCounter;
 }
 inline int64_t GetTimeMillis()
 {
    return (boost::posix_time::ptime(boost::posix_time::microsec_clock::universal_time()) -
@ -371,28 +342,6 @@ bool SoftSetArg(const std::string& strArg, const std::string& strValue);
 */
 bool SoftSetBoolArg(const std::string& strArg, bool fValue);
 /**
 * MWC RNG of George Marsaglia
 * This is intended to be fast. It has a period of 2^59.3, though the
 * least significant 16 bits only have a period of about 2^30.1.
 *
 * @return random value
 */
 extern uint32_t insecure_rand_Rz;
 extern uint32_t insecure_rand_Rw;
 static inline uint32_t insecure_rand(void)
 {
    insecure_rand_Rz = 36969 * (insecure_rand_Rz & 65535) + (insecure_rand_Rz >> 16);
    insecure_rand_Rw = 18000 * (insecure_rand_Rw & 65535) + (insecure_rand_Rw >> 16);
    return (insecure_rand_Rw << 16) + insecure_rand_Rz;
 }
 /**
 * Seed insecure_rand using the random pool.
 * @param Deterministic Use a determinstic seed
 */
 void seed_insecure_rand(bool fDeterministic=false);
 /**
 * Timing-attack-resistant comparison.
 * Takes time proportional to length