libcrypto++-dev/html/randpool_8h_source.html

// randpool.h - originally written and placed in the public domain by Wei Dai

//              OldRandPool added by JW in August, 2017.


/// \file randpool.h

/// \brief Class file for Randomness Pool

/// \details RandomPool can be used to generate cryptographic quality pseudorandom bytes

///  after seeding the pool with IncorporateEntropy(). Internally, the generator uses

///  AES-256 to produce the stream. Entropy is stirred in using SHA-256.

/// \details RandomPool used to follow the design of randpool in PGP 2.6.x. At version 5.5

///  RandomPool was redesigned to reduce the risk of reusing random numbers after state

///  rollback (which may occur when running in a virtual machine like VMware or a hosted

///  environment).

/// \details If you need the pre-Crypto++ 5.5 generator then use OldRandomPool class. You

///  should migrate away from OldRandomPool at the earliest opportunity. Use RandomPool

///  or AutoSeededRandomPool instead.

/// \since Crypto++ 4.0 (PGP 2.6.x style), Crypto++ 5.5 (AES-256 based)


#ifndef CRYPTOPP_RANDPOOL_H

#define CRYPTOPP_RANDPOOL_H


#include "cryptlib.h"

#include "filters.h"

#include "secblock.h"

#include "smartptr.h"

#include "aes.h"


NAMESPACE_BEGIN(CryptoPP)


/// \brief Randomness Pool based on AES-256

/// \details RandomPool can be used to generate cryptographic quality pseudorandom bytes

///  after seeding the pool with IncorporateEntropy(). Internally, the generator uses

///  AES-256 to produce the stream. Entropy is stirred in using SHA-256.

/// \details RandomPool used to follow the design of randpool in PGP 2.6.x. At version 5.5

///  RandomPool was redesigned to reduce the risk of reusing random numbers after state

///  rollback, which may occur when running in a virtual machine like VMware or a hosted

///  environment.

/// \details You should reseed the generator after a fork() to avoid multiple generators

///  with the same internal state.

/// \details If you need the pre-Crypto++ 5.5 generator then use OldRandomPool class. You

///  should migrate away from OldRandomPool at the earliest opportunity.

/// \sa OldRandomPool

/// \since Crypto++ 4.0 (PGP 2.6.x style), Crypto++ 5.5 (AES-256 based)

class CRYPTOPP_DLL RandomPool : public RandomNumberGenerator, public NotCopyable

{

public:

    /// \brief Construct a RandomPool

    RandomPool();


    bool CanIncorporateEntropy() const {return true;}

    void IncorporateEntropy(const byte *input, size_t length);

    void GenerateIntoBufferedTransformation(BufferedTransformation &target, const std::string &channel, lword size);


private:

    FixedSizeAlignedSecBlock<byte, 16, true> m_seed;

    FixedSizeAlignedSecBlock<byte, 32> m_key;

    member_ptr<BlockCipher> m_pCipher;

    bool m_keySet;

};


/// \brief Randomness Pool based on PGP 2.6.x with MDC

/// \details If you need the pre-Crypto++ 5.5 generator then use OldRandomPool class. The

///  OldRandomPool also provides the modern interface, including <tt>CanIncorporateEntropy</tt>,

///  <tt>IncorporateEntropy</tt> and <tt>GenerateIntoBufferedTransformation</tt>.

/// \details You should reseed the generator after a fork() to avoid multiple generators

///  with the same internal state.

/// \details You should migrate away from OldRandomPool at the earliest opportunity. Use a

///  modern random number generator or key derivation function, like AutoSeededRandomPool or

///  HKDF.

/// \warning This class uses an old style PGP 2.6.x with MDC. The generator risks reusing

///  random numbers after state rollback. You should migrate away from OldRandomPool at

///  the earliest opportunity.

/// \sa RandomPool, AutoSeededRandomPool, HKDF, P1363_KDF2, PKCS12_PBKDF, PKCS5_PBKDF2_HMAC

/// \since Crypto++ 6.0

class CRYPTOPP_DLL OldRandomPool : public RandomNumberGenerator

{

public:

    /// \brief Construct an OldRandomPool

    /// \param poolSize internal pool size of the generator

    /// \details poolSize must be greater than 16

    OldRandomPool(unsigned int poolSize=384);


    // RandomNumberGenerator interface (Crypto++ 5.5 and above)

    bool CanIncorporateEntropy() const {return true;}

    void IncorporateEntropy(const byte *input, size_t length);

    void GenerateIntoBufferedTransformation(BufferedTransformation &target, const std::string &channel, lword size);


    byte GenerateByte();

    void GenerateBlock(byte *output, size_t size);


    // GenerateWord32 is overridden and provides Crypto++ 5.4 behavior.

    // Taken from RandomNumberSource::GenerateWord32 in cryptlib.cpp.

    word32 GenerateWord32 (word32 min=0, word32 max=0xffffffffUL);


protected:

    void Stir();


private:

    SecByteBlock pool, key;

    size_t addPos, getPos;

};


NAMESPACE_END


#endif

aes.h
Class file for the AES cipher (Rijndael)

BufferedTransformation
Interface for buffered transformations.
Definition: cryptlib.h:1652

FixedSizeAlignedSecBlock< byte, 16, true >

NotCopyable
Ensures an object is not copyable.
Definition: misc.h:239

OldRandomPool
Randomness Pool based on PGP 2.6.x with MDC.
Definition: randpool.h:75

OldRandomPool::GenerateIntoBufferedTransformation
void GenerateIntoBufferedTransformation(BufferedTransformation &target, const std::string &channel, lword size)
Generate random bytes into a BufferedTransformation.

OldRandomPool::GenerateWord32
word32 GenerateWord32(word32 min=0, word32 max=0xffffffffUL)
Generate a random 32 bit word in the range min to max, inclusive.

OldRandomPool::CanIncorporateEntropy
bool CanIncorporateEntropy() const
Determines if a generator can accept additional entropy.
Definition: randpool.h:83

OldRandomPool::GenerateByte
byte GenerateByte()
Generate new random byte and return it.

OldRandomPool::IncorporateEntropy
void IncorporateEntropy(const byte *input, size_t length)
Update RNG state with additional unpredictable values.

OldRandomPool::GenerateBlock
void GenerateBlock(byte *output, size_t size)
Generate random array of bytes.

OldRandomPool::OldRandomPool
OldRandomPool(unsigned int poolSize=384)
Construct an OldRandomPool.

RandomNumberGenerator
Interface for random number generators.
Definition: cryptlib.h:1435

RandomPool
Randomness Pool based on AES-256.
Definition: randpool.h:44

RandomPool::RandomPool
RandomPool()
Construct a RandomPool.

RandomPool::CanIncorporateEntropy
bool CanIncorporateEntropy() const
Determines if a generator can accept additional entropy.
Definition: randpool.h:49

RandomPool::IncorporateEntropy
void IncorporateEntropy(const byte *input, size_t length)
Update RNG state with additional unpredictable values.

RandomPool::GenerateIntoBufferedTransformation
void GenerateIntoBufferedTransformation(BufferedTransformation &target, const std::string &channel, lword size)
Generate random bytes into a BufferedTransformation.

SecByteBlock
SecBlock<byte> typedef.
Definition: secblock.h:1226

member_ptr< BlockCipher >

word32
unsigned int word32
32-bit unsigned datatype
Definition: config_int.h:62

lword
word64 lword
Large word type.
Definition: config_int.h:158

cryptlib.h
Abstract base classes that provide a uniform interface to this library.

filters.h
Implementation of BufferedTransformation's attachment interface.

CryptoPP
Crypto++ library namespace.

secblock.h
Classes and functions for secure memory allocations.

smartptr.h
Classes for automatic resource management.