dolphin/Source/Core/Common/Random.cpp

// Copyright 2018 Dolphin Emulator Project
// Licensed under GPLv2+
// Refer to the license.txt file included.

#include "Common/Random.h"

#include <mbedtls/entropy.h>
#include <mbedtls/hmac_drbg.h>

#include "Common/Assert.h"

namespace Common::Random
{
struct PRNG::Impl
{
  Impl(void* seed, std::size_t size)
  {
    mbedtls_hmac_drbg_init(&m_context);
    const int ret = mbedtls_hmac_drbg_seed_buf(
        &m_context, mbedtls_md_info_from_type(MBEDTLS_MD_SHA256), static_cast<u8*>(seed), size);
    ASSERT(ret == 0);
  }

  ~Impl() { mbedtls_hmac_drbg_free(&m_context); }

  void Generate(void* buffer, std::size_t size)
  {
    const int ret = mbedtls_hmac_drbg_random(&m_context, static_cast<u8*>(buffer), size);
    ASSERT(ret == 0);
  }

  mbedtls_hmac_drbg_context m_context;
};

PRNG::PRNG(void* seed, std::size_t size) : m_impl(std::make_unique<Impl>(seed, size))
{
}

PRNG::~PRNG() = default;

void PRNG::Generate(void* buffer, std::size_t size)
{
  m_impl->Generate(buffer, size);
}

class EntropySeededPRNG final
{
public:
  EntropySeededPRNG()
  {
    mbedtls_entropy_init(&m_entropy);
    mbedtls_hmac_drbg_init(&m_context);
    const int ret = mbedtls_hmac_drbg_seed(&m_context, mbedtls_md_info_from_type(MBEDTLS_MD_SHA256),
                                           mbedtls_entropy_func, &m_entropy, nullptr, 0);
    ASSERT(ret == 0);
  }

  ~EntropySeededPRNG()
  {
    mbedtls_hmac_drbg_free(&m_context);
    mbedtls_entropy_free(&m_entropy);
  }

  void Generate(void* buffer, std::size_t size)
  {
    const int ret = mbedtls_hmac_drbg_random(&m_context, static_cast<u8*>(buffer), size);
    ASSERT(ret == 0);
  }

private:
  mbedtls_entropy_context m_entropy;
  mbedtls_hmac_drbg_context m_context;
};

static thread_local EntropySeededPRNG s_esprng;

void Generate(void* buffer, std::size_t size)
{
  s_esprng.Generate(buffer, size);
}
}  // namespace Common::Random
Common: Add Random utilities This makes it easier to generate random numbers or fill a buffer with random data in a cryptographically secure way. This also replaces existing usages of RNG functions in the codebase: * <random> is pretty hard to use correctly, and std::random_device does not give enough guarantees about its results (it's implementation-defined, non cryptographically secure and could be deterministic on some platforms). Doing things correctly is error prone and verbose. * rand() is terrible and should not be used especially in crypto code. 2018-05-21 13:48:17 +00:00			`// Copyright 2018 Dolphin Emulator Project`
			`// Licensed under GPLv2+`
			`// Refer to the license.txt file included.`

			`#include "Common/Random.h"`

			`#include <mbedtls/entropy.h>`
			`#include <mbedtls/hmac_drbg.h>`

			`#include "Common/Assert.h"`

			`namespace Common::Random`
			`{`
Random: Add seeded PRNG 2021-01-13 13:54:19 +00:00			`struct PRNG::Impl`
			`{`
			`Impl(void* seed, std::size_t size)`
			`{`
			`mbedtls_hmac_drbg_init(&m_context);`
			`const int ret = mbedtls_hmac_drbg_seed_buf(`
			`&m_context, mbedtls_md_info_from_type(MBEDTLS_MD_SHA256), static_cast<u8*>(seed), size);`
			`ASSERT(ret == 0);`
			`}`

			`~Impl() { mbedtls_hmac_drbg_free(&m_context); }`

			`void Generate(void* buffer, std::size_t size)`
			`{`
			`const int ret = mbedtls_hmac_drbg_random(&m_context, static_cast<u8*>(buffer), size);`
			`ASSERT(ret == 0);`
			`}`

			`mbedtls_hmac_drbg_context m_context;`
			`};`

			`PRNG::PRNG(void* seed, std::size_t size) : m_impl(std::make_unique<Impl>(seed, size))`
			`{`
			`}`

			`PRNG::~PRNG() = default;`

			`void PRNG::Generate(void* buffer, std::size_t size)`
			`{`
			`m_impl->Generate(buffer, size);`
			`}`

			`class EntropySeededPRNG final`
Common: Add Random utilities This makes it easier to generate random numbers or fill a buffer with random data in a cryptographically secure way. This also replaces existing usages of RNG functions in the codebase: * <random> is pretty hard to use correctly, and std::random_device does not give enough guarantees about its results (it's implementation-defined, non cryptographically secure and could be deterministic on some platforms). Doing things correctly is error prone and verbose. * rand() is terrible and should not be used especially in crypto code. 2018-05-21 13:48:17 +00:00			`{`
			`public:`
Random: Add seeded PRNG 2021-01-13 13:54:19 +00:00			`EntropySeededPRNG()`
Common: Add Random utilities This makes it easier to generate random numbers or fill a buffer with random data in a cryptographically secure way. This also replaces existing usages of RNG functions in the codebase: * <random> is pretty hard to use correctly, and std::random_device does not give enough guarantees about its results (it's implementation-defined, non cryptographically secure and could be deterministic on some platforms). Doing things correctly is error prone and verbose. * rand() is terrible and should not be used especially in crypto code. 2018-05-21 13:48:17 +00:00			`{`
			`mbedtls_entropy_init(&m_entropy);`
			`mbedtls_hmac_drbg_init(&m_context);`
			`const int ret = mbedtls_hmac_drbg_seed(&m_context, mbedtls_md_info_from_type(MBEDTLS_MD_SHA256),`
			`mbedtls_entropy_func, &m_entropy, nullptr, 0);`
			`ASSERT(ret == 0);`
			`}`

Random: Add seeded PRNG 2021-01-13 13:54:19 +00:00			`~EntropySeededPRNG()`
Common: Add Random utilities This makes it easier to generate random numbers or fill a buffer with random data in a cryptographically secure way. This also replaces existing usages of RNG functions in the codebase: * <random> is pretty hard to use correctly, and std::random_device does not give enough guarantees about its results (it's implementation-defined, non cryptographically secure and could be deterministic on some platforms). Doing things correctly is error prone and verbose. * rand() is terrible and should not be used especially in crypto code. 2018-05-21 13:48:17 +00:00			`{`
			`mbedtls_hmac_drbg_free(&m_context);`
			`mbedtls_entropy_free(&m_entropy);`
			`}`

			`void Generate(void* buffer, std::size_t size)`
			`{`
			`const int ret = mbedtls_hmac_drbg_random(&m_context, static_cast<u8*>(buffer), size);`
			`ASSERT(ret == 0);`
			`}`

			`private:`
			`mbedtls_entropy_context m_entropy;`
			`mbedtls_hmac_drbg_context m_context;`
			`};`

Random: Add seeded PRNG 2021-01-13 13:54:19 +00:00			`static thread_local EntropySeededPRNG s_esprng;`
Common: Add Random utilities This makes it easier to generate random numbers or fill a buffer with random data in a cryptographically secure way. This also replaces existing usages of RNG functions in the codebase: * <random> is pretty hard to use correctly, and std::random_device does not give enough guarantees about its results (it's implementation-defined, non cryptographically secure and could be deterministic on some platforms). Doing things correctly is error prone and verbose. * rand() is terrible and should not be used especially in crypto code. 2018-05-21 13:48:17 +00:00
			`void Generate(void* buffer, std::size_t size)`
			`{`
Random: Add seeded PRNG 2021-01-13 13:54:19 +00:00			`s_esprng.Generate(buffer, size);`
Common: Add Random utilities This makes it easier to generate random numbers or fill a buffer with random data in a cryptographically secure way. This also replaces existing usages of RNG functions in the codebase: * <random> is pretty hard to use correctly, and std::random_device does not give enough guarantees about its results (it's implementation-defined, non cryptographically secure and could be deterministic on some platforms). Doing things correctly is error prone and verbose. * rand() is terrible and should not be used especially in crypto code. 2018-05-21 13:48:17 +00:00			`}`
			`} // namespace Common::Random`