ABC/random_8h_source.html

 // Copyright (c) 2009-2010 Satoshi Nakamoto

 // Copyright (c) 2009-2016 The Bitcoin Core developers

 // Distributed under the MIT software license, see the accompanying

 // file COPYING or http://www.opensource.org/licenses/mit-license.php.


 #ifndef BITCOIN_RANDOM_H

 #define BITCOIN_RANDOM_H


 #include <crypto/chacha20.h>

 #include <crypto/common.h>

 #include <span.h>

 #include <uint256.h>


 #include <chrono>

 #include <cstdint>

 #include <limits>


 void GetRandBytes(Span<uint8_t> bytes) noexcept;

 uint64_t GetRandInternal(uint64_t nMax) noexcept;

 template <typename T>

 T GetRand(T nMax = std::numeric_limits<T>::max()) noexcept {

     static_assert(std::is_integral<T>(), "T must be integral");

     static_assert(std::numeric_limits<T>::max() <=

                       std::numeric_limits<uint64_t>::max(),

                   "GetRand only supports up to uint64_t");

     return T(GetRandInternal(nMax));

 }

 template <typename D>

 D GetRandomDuration(typename std::common_type<D>::type max) noexcept {

     // Having the compiler infer the template argument from the function

     // argument is dangerous, because the desired return value generally has a

     // different type than the function argument. So std::common_type is used to

     // force the call site to specify the type of the return value.


     assert(max.count() > 0);

     return D{GetRand(max.count())};

 };

 constexpr auto GetRandMicros = GetRandomDuration<std::chrono::microseconds>;

 constexpr auto GetRandMillis = GetRandomDuration<std::chrono::milliseconds>;


 std::chrono::microseconds

 GetExponentialRand(std::chrono::microseconds now,

                    std::chrono::seconds average_interval);


 uint256 GetRandHash() noexcept;


 void GetStrongRandBytes(Span<uint8_t> bytes) noexcept;


 void RandAddPeriodic() noexcept;


 void RandAddEvent(const uint32_t event_info) noexcept;


 class FastRandomContext {

 private:

     bool requires_seed;

     ChaCha20 rng;


     uint8_t bytebuf[64];

     int bytebuf_size;


     uint64_t bitbuf;

     int bitbuf_size;


     void RandomSeed();


     void FillByteBuffer() {

         if (requires_seed) {

             RandomSeed();

         }

         rng.Keystream(bytebuf, sizeof(bytebuf));

         bytebuf_size = sizeof(bytebuf);

     }


     void FillBitBuffer() {

         bitbuf = rand64();

         bitbuf_size = 64;

     }


 public:

     explicit FastRandomContext(bool fDeterministic = false) noexcept;


     explicit FastRandomContext(const uint256 &seed) noexcept;


     // Do not permit copying a FastRandomContext (move it, or create a new one

     // to get reseeded).

     FastRandomContext(const FastRandomContext &) = delete;

     FastRandomContext(FastRandomContext &&) = delete;

     FastRandomContext &operator=(const FastRandomContext &) = delete;


     FastRandomContext &operator=(FastRandomContext &&from) noexcept;


     uint64_t rand64() noexcept {

         if (bytebuf_size < 8) {

             FillByteBuffer();

         }

         uint64_t ret = ReadLE64(bytebuf + 64 - bytebuf_size);

         bytebuf_size -= 8;

         return ret;

     }


     uint64_t randbits(int bits) noexcept {

         if (bits == 0) {

             return 0;

         } else if (bits > 32) {

             return rand64() >> (64 - bits);

         } else {

             if (bitbuf_size < bits) {

                 FillBitBuffer();

             }

             uint64_t ret = bitbuf & (~uint64_t(0) >> (64 - bits));

             bitbuf >>= bits;

             bitbuf_size -= bits;

             return ret;

         }

     }


     uint64_t randrange(uint64_t range) noexcept {

         assert(range);

         --range;

         int bits = CountBits(range);

         while (true) {

             uint64_t ret = randbits(bits);

             if (ret <= range) {

                 return ret;

             }

         }

     }


     std::vector<uint8_t> randbytes(size_t len);


     uint32_t rand32() noexcept { return randbits(32); }


     uint160 rand160() noexcept;


     uint256 rand256() noexcept;


     bool randbool() noexcept { return randbits(1); }


     template <typename Tp>

     Tp rand_uniform_delay(const Tp &time, typename Tp::duration range) {

         using Dur = typename Tp::duration;

         Dur dur{range.count() > 0

                     ? /* interval [0..range) */ Dur{randrange(range.count())}

                 : range.count() < 0

                     ? /* interval (range..0] */ -Dur{randrange(-range.count())}

                     :

                     /* interval [0..0] */ Dur{0}};

         return time + dur;

     }


     // Compatibility with the C++11 UniformRandomBitGenerator concept

     typedef uint64_t result_type;

     static constexpr uint64_t min() { return 0; }

     static constexpr uint64_t max() {

         return std::numeric_limits<uint64_t>::max();

     }

     inline uint64_t operator()() noexcept { return rand64(); }

 };


 template <typename I, typename R> void Shuffle(I first, I last, R &&rng) {

     while (first != last) {

         size_t j = rng.randrange(last - first);

         if (j) {

             using std::swap;

             swap(*first, *(first + j));

         }

         ++first;

     }

 }


 static const int NUM_OS_RANDOM_BYTES = 32;


 void GetOSRand(uint8_t *ent32);


 bool Random_SanityCheck();


 void RandomInit();


 #endif // BITCOIN_RANDOM_H

chacha20.h

ChaCha20
A class for ChaCha20 256-bit stream cipher developed by Daniel J.
Definition: chacha20.h:15

ChaCha20::Keystream
void Keystream(uint8_t *c, size_t bytes)
outputs the keystream of size <bytes> into
Definition: chacha20.cpp:79

FastRandomContext
Fast randomness source.
Definition: random.h:156

FastRandomContext::rand32
uint32_t rand32() noexcept
Generate a random 32-bit integer.
Definition: random.h:247

FastRandomContext::FillBitBuffer
void FillBitBuffer()
Definition: random.h:177

FastRandomContext::bitbuf
uint64_t bitbuf
Definition: random.h:164

FastRandomContext::rand_uniform_delay
Tp rand_uniform_delay(const Tp &time, typename Tp::duration range)
Return the time point advanced by a uniform random duration.
Definition: random.h:260

FastRandomContext::bytebuf_size
int bytebuf_size
Definition: random.h:162

FastRandomContext::rng
ChaCha20 rng
Definition: random.h:159

FastRandomContext::max
static constexpr uint64_t max()
Definition: random.h:274

FastRandomContext::bitbuf_size
int bitbuf_size
Definition: random.h:165

FastRandomContext::randbits
uint64_t randbits(int bits) noexcept
Generate a random (bits)-bit integer.
Definition: random.h:211

FastRandomContext::min
static constexpr uint64_t min()
Definition: random.h:273

FastRandomContext::result_type
uint64_t result_type
Definition: random.h:272

FastRandomContext::requires_seed
bool requires_seed
Definition: random.h:158

FastRandomContext::randrange
uint64_t randrange(uint64_t range) noexcept
Generate a random integer in the range [0..range).
Definition: random.h:231

FastRandomContext::operator()
uint64_t operator()() noexcept
Definition: random.h:277

FastRandomContext::FillByteBuffer
void FillByteBuffer()
Definition: random.h:169

Span
A Span is an object that can refer to a contiguous sequence of objects.
Definition: span.h:93

uint160
160-bit opaque blob.
Definition: uint256.h:117

uint256
256-bit opaque blob.
Definition: uint256.h:129

common.h

ReadLE64
static uint64_t ReadLE64(const uint8_t *ptr)
Definition: common.h:29

CountBits
static uint64_t CountBits(uint64_t x)
Return the smallest number n such that (x >> n) == 0 (or 64 if the highest bit in x is set.
Definition: common.h:82

GetExponentialRand
std::chrono::microseconds GetExponentialRand(std::chrono::microseconds now, std::chrono::seconds average_interval)
Return a timestamp in the future sampled from an exponential distribution (https://en....
Definition: random.cpp:794

GetRandomDuration
D GetRandomDuration(typename std::common_type< D >::type max) noexcept
Generate a uniform random duration in the range [0..max).
Definition: random.h:97

GetRandMicros
constexpr auto GetRandMicros
Definition: random.h:106

GetRandBytes
void GetRandBytes(Span< uint8_t > bytes) noexcept
Overall design of the RNG and entropy sources.
Definition: random.cpp:639

RandAddPeriodic
void RandAddPeriodic() noexcept
Gather entropy from various expensive sources, and feed them to the PRNG state.
Definition: random.cpp:645

GetRandMillis
constexpr auto GetRandMillis
Definition: random.h:107

GetRandInternal
uint64_t GetRandInternal(uint64_t nMax) noexcept
Generate a uniform random integer in the range [0..range).
Definition: random.cpp:655

Shuffle
void Shuffle(I first, I last, R &&rng)
More efficient than using std::shuffle on a FastRandomContext.
Definition: random.h:291

GetOSRand
void GetOSRand(uint8_t *ent32)
Get 32 bytes of system entropy.
Definition: random.cpp:319

Random_SanityCheck
bool Random_SanityCheck()
Check that OS randomness is available and returning the requested number of bytes.
Definition: random.cpp:706

GetRandHash
uint256 GetRandHash() noexcept
Definition: random.cpp:659

NUM_OS_RANDOM_BYTES
static const int NUM_OS_RANDOM_BYTES
Number of random bytes returned by GetOSRand.
Definition: random.h:308

RandomInit
void RandomInit()
Initialize global RNG state and log any CPU features that are used.
Definition: random.cpp:786

RandAddEvent
void RandAddEvent(const uint32_t event_info) noexcept
Gathers entropy from the low bits of the time at which events occur.
Definition: random.cpp:649

GetRand
T GetRand(T nMax=std::numeric_limits< T >::max()) noexcept
Generate a uniform random integer of type T in the range [0..nMax) nMax defaults to std::numeric_limi...
Definition: random.h:85

GetStrongRandBytes
void GetStrongRandBytes(Span< uint8_t > bytes) noexcept
Gather entropy from various sources, feed it into the internal PRNG, and generate random data using i...
Definition: random.cpp:642

span.h

uint256.h

assert
assert(!tx.IsCoinBase())