Page MenuHomePhabricator

Switch all RNG code to the built-in PRNG.
ClosedPublic

Authored by nakihito on Nov 5 2019, 23:01.

Details

Reviewers
deadalnix
Fabien
jasonbcox
Group Reviewers
Restricted Owners Package(Owns No Changed Paths)
Restricted Project
Commits
rSTAGING478736a84541: Switch all RNG code to the built-in PRNG.
rABC478736a84541: Switch all RNG code to the built-in PRNG.
Summary

It includes the following policy changes:

  • All GetRand* functions seed the stack pointer and rdrand result (in addition to the performance counter)
  • The periodic entropy added by the idle scheduler now seeds stack pointer, rdrand and perfmon data (once every 10 minutes) in addition to just a sleep timing.
  • The entropy added when calling GetStrongRandBytes no longer includes the once-per-10-minutes perfmon data on windows (it is moved to the idle scheduler instead, where latency matters less).

Other changes:

  • OpenSSL is no longer seeded directly anywhere. Instead, any generated randomness through our own RNG is fed back to OpenSSL (after an additional hashing step to prevent leaking our RNG state).
  • Seeding that was previously done directly in RandAddSeedSleep is now moved to SeedSleep(), which is indirectly invoked through ProcRand from RandAddSeedSleep.
  • Seeding that was previously done directly in GetStrongRandBytes() is now moved to SeedSlow(), which is indirectly invoked through ProcRand from GetStrongRandBytes().

Partial backport of Core PR14955
https://github.com/bitcoin/bitcoin/pull/14955/commits/9d7032e4f066777c97c58b1394884716e213790a

Depends on D4394

Test Plan
make check
test_runner.py

Diff Detail

Repository
rABC Bitcoin ABC
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

Owners added a reviewer: Restricted Owners Package.Nov 5 2019, 23:01

You may want to run builds (and ideally tests) on some other platforms, as this code embeds platform-dependent behavior.

You may want to run builds (and ideally tests) on some other platforms, as this code embeds platform-dependent behavior.

I don't have a machine to do this on.

Fabien added inline comments.
src/random.cpp
404 ↗(On Diff #13947)

Braces

This revision is now accepted and ready to land.Nov 8 2019, 07:44

Rebased and added braces.