openentropy-core 0.12.3

Core entropy harvesting library — hardware noise sources, raw or SHA-256 conditioned
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127

//! DiskIOSource — NVMe/SSD read latency jitter.
//!
//! Creates a temporary 64KB file, performs random seeks and 4KB reads,
//! and extracts timing entropy via the standard delta/XOR/fold pipeline.
//!
//! **Raw output characteristics:** Timing deltas from random disk reads.
//! Use SHA-256 conditioning for uniform output.

use std::io::{Read, Seek, SeekFrom, Write};
use std::time::Instant;

use tempfile::NamedTempFile;

use crate::source::{EntropySource, Platform, SourceCategory, SourceInfo};
use crate::sources::helpers::extract_timing_entropy;

/// Size of the temporary file used for random reads.
const TEMP_FILE_SIZE: usize = 64 * 1024; // 64 KB

/// Size of each random read operation.
const READ_BLOCK_SIZE: usize = 4 * 1024; // 4 KB

static DISK_IO_INFO: SourceInfo = SourceInfo {
    name: "disk_io",
    description: "NVMe/SSD read latency jitter from random 4KB reads",
    physics: "Measures NVMe/SSD read latency for small random reads. Jitter sources: \
              flash translation layer (FTL) remapping, wear leveling, garbage collection, \
              read disturb mitigation, NAND page read latency variation (depends on charge \
              level in floating-gate transistors), and NVMe controller queue arbitration.",
    category: SourceCategory::IO,
    platform: Platform::Any,
    requirements: &[],
    entropy_rate_estimate: 1.5,
    composite: false,
    is_fast: false,
};

/// Entropy source that harvests timing jitter from NVMe/SSD random reads.
pub struct DiskIOSource;

impl EntropySource for DiskIOSource {
    fn info(&self) -> &SourceInfo {
        &DISK_IO_INFO
    }

    fn is_available(&self) -> bool {
        true
    }

    fn collect(&self, n_samples: usize) -> Vec<u8> {
        // Create a temporary 64KB file filled with varied data.
        let mut tmpfile = match NamedTempFile::new() {
            Ok(f) => f,
            Err(_) => return Vec::new(),
        };

        let mut fill_data = vec![0u8; TEMP_FILE_SIZE];
        let mut lcg: u64 = 0xCAFE_BABE_DEAD_BEEF;
        for chunk in fill_data.chunks_mut(8) {
            lcg = lcg.wrapping_mul(6364136223846793005).wrapping_add(1);
            let bytes = lcg.to_le_bytes();
            for (i, b) in chunk.iter_mut().enumerate() {
                *b = bytes[i % 8];
            }
        }
        if tmpfile.write_all(&fill_data).is_err() {
            return Vec::new();
        }
        if tmpfile.flush().is_err() {
            return Vec::new();
        }

        let mut read_buf = vec![0u8; READ_BLOCK_SIZE];
        let max_offset = TEMP_FILE_SIZE.saturating_sub(READ_BLOCK_SIZE);

        let seed = std::time::SystemTime::now()
            .duration_since(std::time::UNIX_EPOCH)
            .unwrap_or_default()
            .as_nanos() as u64;
        let mut lcg_state = if seed == 0 {
            0xDEAD_BEEF_CAFE_1235u64
        } else {
            seed | 1
        };

        // Over-sample: 4x raw readings per output byte for the extraction pipeline.
        let num_reads = n_samples * 4 + 64;
        let mut timings = Vec::with_capacity(num_reads);

        for _ in 0..num_reads {
            lcg_state = lcg_state
                .wrapping_mul(6364136223846793005)
                .wrapping_add(1442695040888963407);
            let offset = (lcg_state as usize) % (max_offset + 1);

            let t0 = Instant::now();
            let _ = tmpfile.seek(SeekFrom::Start(offset as u64));
            let _ = tmpfile.read(&mut read_buf);
            let elapsed_ns = t0.elapsed().as_nanos() as u64;

            timings.push(elapsed_ns);
        }

        extract_timing_entropy(&timings, n_samples)
    }
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    #[ignore] // Run with: cargo test -- --ignored
    fn disk_io_collects_bytes() {
        let src = DiskIOSource;
        assert!(src.is_available());
        let data = src.collect(128);
        assert!(!data.is_empty());
    }

    #[test]
    fn disk_io_info() {
        let src = DiskIOSource;
        assert_eq!(src.name(), "disk_io");
        assert_eq!(src.info().category, SourceCategory::IO);
    }
}