arcium-primitives 0.4.4

Arcium primitives
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131

#[cfg(any(test, feature = "dev"))]
pub use test::test_rng;
use typenum::Unsigned;

use crate::{constants::CollisionResistanceBytes, hashing::Digest, random::CryptoRngCore};

/// The default RNG type used in the library, set to `StdRng` (ChaCha12).
pub type BaseRng = rand::rngs::StdRng;

/// The generic type for all seeds across our protocols.
pub type Seed = [u8; CollisionResistanceBytes::USIZE];

/// A generic trait for secure pseudo-random generators (PRGs).
/// This trait is a combination of `RngCore`, `CryptoRng`, and `SeedableRng`.
pub trait SeedableRng:
    CryptoRngCore + rand::SeedableRng<Seed: AsRef<[u8]> + From<Digest>> + Clone + Send
{
    /// Creates a new random generator from the hash of a seed with a domain-separating tag.
    #[inline]
    fn from_tagged_seed(seed: Self::Seed, tag: impl AsRef<[u8]>) -> Self {
        let seed = crate::hashing::hash(&[seed.as_ref(), tag.as_ref()]);
        <Self as rand::SeedableRng>::from_seed(seed.into())
    }

    #[inline]
    /// Create a new PRNG using the given seed.
    fn from_seed(seed: Self::Seed) -> Self {
        <Self as rand::SeedableRng>::from_seed(seed)
    }

    #[inline]
    /// Create a new PRNG seeded from another `Rng`.
    fn from_rng<R: rand::RngCore>(mut rng: R) -> Result<Self, rand::Error> {
        <Self as rand::SeedableRng>::from_rng(&mut rng)
    }

    #[inline]
    /// Fills a buffer with random bytes.
    fn fill_bytes(&mut self, dest: &mut [u8]) {
        rand::RngCore::fill_bytes(self, dest)
    }
}

impl<T> SeedableRng for T where
    T: CryptoRngCore + rand::SeedableRng<Seed = super::Seed> + Clone + Send
{
}

#[cfg(any(test, feature = "dev"))]
pub mod test {
    use std::{cell::UnsafeCell, rc::Rc};

    use rand::{CryptoRng, RngCore, SeedableRng};

    use crate::random::BaseRng;

    /// Returns a test RNG that can be used for testing purposes.
    ///
    /// If the environment variable `ASYNC_MPC_NON_DETERMINISTIC_TESTS` is set, it will use
    /// a random (non-deterministic) seed for the RNG. Otherwise, it will use the current
    /// thread's name as the seed (deterministic).
    pub fn test_rng() -> TestRng {
        let rng = TEST_RNG_KEY.with(|t| t.clone());
        TestRng { rng }
    }

    thread_local!(
        static TEST_RNG_KEY: Rc<UnsafeCell<BaseRng>> = {
        let rng = match std::env::var("ASYNC_MPC_NON_DETERMINISTIC_TESTS") {
            Ok(_) => BaseRng::from_rng(rand::thread_rng()).unwrap_or_else(|err|
                    panic!("could not initialize test_rng: {err}")),
            Err(_) => {
                let thread = std::thread::current();
                let seed = crate::hashing::hash(&[thread.name().unwrap_or("async_mpc_test").as_bytes()]);
                BaseRng::from_seed(seed.into())
            }
        };
        Rc::new(UnsafeCell::new(rng))
    });

    /// A reference to the thread-local random number generator used for testing.
    ///
    /// Based on [ThreadRng] from the rand crate, explicitly not Send or Sync.
    ///
    /// [`ThreadRng`]: rand::ThreadRng
    #[derive(Clone, Debug)]
    pub struct TestRng {
        // Rc is explicitly !Send and !Sync
        rng: Rc<UnsafeCell<BaseRng>>,
    }

    impl Default for TestRng {
        fn default() -> TestRng {
            test_rng()
        }
    }

    impl RngCore for TestRng {
        #[inline(always)]
        fn next_u32(&mut self) -> u32 {
            // SAFETY: We must make sure to stop using `rng` before anyone else
            // creates another mutable reference
            let rng = unsafe { &mut *self.rng.get() };
            rng.next_u32()
        }

        #[inline(always)]
        fn next_u64(&mut self) -> u64 {
            // SAFETY: We must make sure to stop using `rng` before anyone else
            // creates another mutable reference
            let rng = unsafe { &mut *self.rng.get() };
            rng.next_u64()
        }

        fn fill_bytes(&mut self, dest: &mut [u8]) {
            // SAFETY: We must make sure to stop using `rng` before anyone else
            // creates another mutable reference
            let rng = unsafe { &mut *self.rng.get() };
            rng.fill_bytes(dest)
        }

        fn try_fill_bytes(&mut self, dest: &mut [u8]) -> Result<(), rand::Error> {
            // SAFETY: We must make sure to stop using `rng` before anyone else
            // creates another mutable reference
            let rng = unsafe { &mut *self.rng.get() };
            rng.try_fill_bytes(dest)
        }
    }

    impl CryptoRng for TestRng {}
}