base/rand_util.h - Issue 10698177: Added crypto random-number generator

Side by Side Diff: base/rand_util.h

Issue 10698177: Added crypto random-number generator (Closed) Base URL: http://git.chromium.org/chromium/src.git@master

Patch Set: Use WriteInto Created 8 years, 5 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View unified diff | Download patch

OLD	NEW
1 // Copyright (c) 2012 The Chromium Authors. All rights reserved.	1 // Copyright (c) 2012 The Chromium Authors. All rights reserved.

2 // Use of this source code is governed by a BSD-style license that can be	2 // Use of this source code is governed by a BSD-style license that can be

3 // found in the LICENSE file.	3 // found in the LICENSE file.

4	4

5 #ifndef BASE_RAND_UTIL_H_	5 #ifndef BASE_RAND_UTIL_H_

6 #define BASE_RAND_UTIL_H_	6 #define BASE_RAND_UTIL_H_

7	7

8 #include <string>	8 #include <string>

9	9

10 #include "base/base_export.h"	10 #include "base/base_export.h"

(...skipping 14 matching lines...) Expand all Loading...
25 // std::random_shuffle(myvector.begin(), myvector.end(), base::RandGenerator);	25 // std::random_shuffle(myvector.begin(), myvector.end(), base::RandGenerator);

26 BASE_EXPORT uint64 RandGenerator(uint64 range);	26 BASE_EXPORT uint64 RandGenerator(uint64 range);

27	27

28 // Returns a random double in range [0, 1). Thread-safe.	28 // Returns a random double in range [0, 1). Thread-safe.

29 BASE_EXPORT double RandDouble();	29 BASE_EXPORT double RandDouble();

30	30

31 // Given input \|bits\|, convert with maximum precision to a double in	31 // Given input \|bits\|, convert with maximum precision to a double in

32 // the range [0, 1). Thread-safe.	32 // the range [0, 1). Thread-safe.

33 BASE_EXPORT double BitsToOpenEndedUnitInterval(uint64 bits);	33 BASE_EXPORT double BitsToOpenEndedUnitInterval(uint64 bits);

34	34

35 // Fills \|output_length\| bytes of \|output\| with cryptographically strong random	35 // Fills \|output_length\| bytes of \|output\| with random data.

36 // data.	36 // Note: The random data is cryptographically secure, but use the RNG in crypto/

	37 // for security-sensitive purposes instead of this function.
	Ryan Sleevi 2012/07/31 23:03:48 nit: I'm mixed on specifically referencing crypto/ nit: I'm mixed on specifically referencing crypto/ from base/, since generally we treat comments like code (in that it's a layering violation). However, saying "don't use this" without saying "What to use instead" equally is undesirable. It also feels conflicting because it specifically says it's cryptographically secure, but then puts someone elsewhere, without context of why (eg: to make sure we clearly know where code /is/ depending on cryptographically secure rng) Perhaps simply say: // For cryptographically strong random, use crypto::RandBytes() and the same below. I'd rather go for the layering violation than leave people clueless as to the 'right' way. Mehrdad 2012/07/31 23:36:33 I feel that not saying this function is cryptograp I feel that not saying this function is cryptographically secure would be very dangerous. If we don't document the fact that it's secure, then the implementation could change later (e.g. someone might notice a performance boost with some other library), suddenly jeopardizing essentially all of Chrome's security. Is it really a good idea to remove that part of the comment? I can try rewording it some other way if this way isn't good enough, but I'm not sure if it's a good idea not to mention the security of this function at all. Ryan Sleevi 2012/08/01 17:08:55 My view of the motivation of crypto::RandBytes() i Show quoted text On 2012/07/31 23:36:33, Mehrdad wrote: > I feel that not saying this function is cryptographically secure would be very > dangerous. > > If we don't document the fact that it's secure, then the implementation could > change later (e.g. someone might notice a performance boost with some other > library), suddenly jeopardizing essentially all of Chrome's security. > > > Is it really a good idea to remove that part of the comment? > > I can try rewording it some other way if this way isn't good enough, but I'm not > sure if it's a good idea not to mention the security of this function at all. My view of the motivation of crypto::RandBytes() is to specifically move away from using base::RandBytes as a source of cryptographically strong entropy. I feel that leaving the comment in (in particular, the header) does not encourage nor reflect this view. I think if any comments about cryptographic security should be made, then it should be made in base/rand_util.cc, so that if anyone is changing the implementation (as opposed to depending on its semantics) are informed of this. That said, my understanding of the motivation of this change was specifically to allow base::RandBytes to be changed (by changing all the crypto-RNG dependents to depend on crypto::RandBytes). If that's not part of this change set, or if it simply emerged because it wasn't obvious that base::RandBytes was cryptographically strong, then perhaps this change should be abandoned? Mehrdad 2012/08/01 17:19:03 No, I agree, RandBytes should definitely be in cry Show quoted text On 2012/08/01 17:08:55, Ryan Sleevi wrote: > My view of the motivation of crypto::RandBytes() is to specifically move away from using base::RandBytes as a source of cryptographically strong entropy. I feel that leaving the comment in (in particular, the header) does not encourage nor reflect this view. > > I think if any comments about cryptographic security should be made, then it should be made in base/rand_util.cc, so that if anyone is changing the implementation (as opposed to depending on its semantics) are informed of this. > > That said, my understanding of the motivation of this change was specifically to allow base::RandBytes to be changed (by changing all the crypto-RNG dependents to depend on crypto::RandBytes). If that's not part of this change set, or if it simply emerged because it wasn't obvious that base::RandBytes was cryptographically strong, then perhaps this change should be abandoned? No, I agree, RandBytes should definitely be in crypto... that was the entire reason I made this change. I'll add a comment to rand_util.cc instead, that sounds like a good idea.
37 BASE_EXPORT void RandBytes(void* output, size_t output_length);	38 BASE_EXPORT void RandBytes(void* output, size_t output_length);

38	39

39 // Fills a string of length \|length\| with with cryptographically strong random	40 // Fills a string of length \|length\| with with random data and returns it.

40 // data and returns it. \|length\| should be nonzero.	41 // \|length\| should be nonzero.

	42 //

	43 // Note: The random data is cryptographically secure, but use the RNG in crypto/

	44 // for security-sensitive purposes instead of this function.

41 //	45 //

42 // Note that this is a variation of \|RandBytes\| with a different return type.	46 // Note that this is a variation of \|RandBytes\| with a different return type.

43 BASE_EXPORT std::string RandBytesAsString(size_t length);	47 BASE_EXPORT std::string RandBytesAsString(size_t length);

44	48

45 #ifdef OS_POSIX	49 #ifdef OS_POSIX

46 BASE_EXPORT int GetUrandomFD();	50 BASE_EXPORT int GetUrandomFD();

47 #endif	51 #endif

48	52

49 } // namespace base	53 } // namespace base

50	54

51 #endif // BASE_RAND_UTIL_H_	55 #endif // BASE_RAND_UTIL_H_

OLD	NEW

« no previous file with comments | « no previous file | crypto/crypto.gyp » ('j') | crypto/random.h » ('J')