This is an archive of the discontinued LLVM Phabricator instance.

libcxx/src/random.cpp
180	This could be guarded even more if we wanted. E.g. defining `_LIBCPP_USING_IOCTL/LINUX_RANDOM_H`, but personally I think that just checking for `RNDGETENTCNT` is enough.

@tcanens You may want to consider updating cppreference in light of this patch when it gets in.

This LGTM except for the test nitpick!

libcxx/test/std/numerics/rand/rand.device/entropy.pass.cpp
26–27	I think we want to make those be `LIBCPP_ASSERT(...)` instead, since the entropy is technically not mandated by the standard. It's just that our implementation behaves that way.

This revision now requires changes to proceed.Jan 19 2021, 7:22 AM

ldionne mentioned this in D94571: [libcxx] random_device, for OpenBSD specify optimal entropy properties.Jan 19 2021, 7:28 AM

ldionne added inline comments.Jan 19 2021, 11:48 AM

libcxx/src/random.cpp
33	Should this be `__has_include(<sys/ioctl.h>)` instead?

curdeius added inline comments.Jan 19 2021, 12:49 PM

libcxx/src/random.cpp
33	Oops, good catch.
libcxx/test/std/numerics/rand/rand.device/entropy.pass.cpp
26–27	The standard says this http://eel.is/c++draft/rand.device#5. So entropy should be between min and log2(max+1), where max is max of result_type. At the same time, http://eel.is/c++draft/rand.device#2 says result_type=unsigned int. So the only thing that can change is the size of unsigned int (which can be non-32-bit somewhere). To be precise I should rather `assert(e <= sizeof(result_type) * CHAR_BIT)`. And it should be for whatever implementation of stdlib. WDYT?

Fix has_include. Use result_type.

curdeius marked an inline comment as done.Jan 20 2021, 1:41 AM

Harbormaster completed remote builds in B85854: Diff 317807.Jan 20 2021, 2:28 AM

LGTM, thanks!

This revision is now accepted and ready to land.Jan 21 2021, 7:42 AM

Closed by commit rGf3b979b65e9f: [libc++] Use ioctl when available to get random_device entropy. (authored by curdeius). · Explain WhyJan 21 2021, 9:01 AM

This revision was automatically updated to reflect the committed changes.

curdeius added a commit: rGf3b979b65e9f: [libc++] Use ioctl when available to get random_device entropy..

Revision Contents

Path

Size

libcxx/

src/

random.cpp

19 lines

test/

std/

numerics/

rand/

rand.device/

entropy.pass.cpp

11 lines

Diff 318232

libcxx/src/random.cpp

	//===-------------------------- random.cpp --------------------------------===//			//===-------------------------- random.cpp --------------------------------===//
	//			//
	// Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.			// Part of the LLVM Project, under the Apache License v2.0 with LLVM Exceptions.
	// See https://llvm.org/LICENSE.txt for license information.			// See https://llvm.org/LICENSE.txt for license information.
	// SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception			// SPDX-License-Identifier: Apache-2.0 WITH LLVM-exception
	//			//
	//===----------------------------------------------------------------------===//			//===----------------------------------------------------------------------===//

	#include <__config>			#include <__config>

	#if defined(_LIBCPP_USING_WIN32_RANDOM)			#if defined(_LIBCPP_USING_WIN32_RANDOM)
	// Must be defined before including stdlib.h to enable rand_s().			// Must be defined before including stdlib.h to enable rand_s().
	#define _CRT_RAND_S			#define _CRT_RAND_S
	#endif // defined(_LIBCPP_USING_WIN32_RANDOM)			#endif // defined(_LIBCPP_USING_WIN32_RANDOM)

				#include "limits"
	#include "random"			#include "random"
	#include "system_error"			#include "system_error"

	#if defined(__sun__)			#if defined(__sun__)
	#define rename solaris_headers_are_broken			#define rename solaris_headers_are_broken
	#endif // defined(__sun__)			#endif // defined(__sun__)

	#include <errno.h>			#include <errno.h>
	#include <stdio.h>			#include <stdio.h>
	#include <stdlib.h>			#include <stdlib.h>

	#if defined(_LIBCPP_USING_GETENTROPY)			#if defined(_LIBCPP_USING_GETENTROPY)
	#include <sys/random.h>			#include <sys/random.h>
	#elif defined(_LIBCPP_USING_DEV_RANDOM)			#elif defined(_LIBCPP_USING_DEV_RANDOM)
	#include <fcntl.h>			#include <fcntl.h>
	#include <unistd.h>			#include <unistd.h>
				#if __has_include(<sys/ioctl.h>) && __has_include(<linux/random.h>)
				ldionneUnsubmitted Done Reply Inline Actions Should this be `__has_include(<sys/ioctl.h>)` instead? ldionne: Should this be `__has_include(<sys/ioctl.h>)` instead?
				curdeiusAuthorUnsubmitted Done Reply Inline Actions Oops, good catch. curdeius: Oops, good catch.
				#include <sys/ioctl.h>
				#include <linux/random.h>
				#endif
	#elif defined(_LIBCPP_USING_NACL_RANDOM)			#elif defined(_LIBCPP_USING_NACL_RANDOM)
	#include <nacl/nacl_random.h>			#include <nacl/nacl_random.h>
	#endif			#endif


	_LIBCPP_BEGIN_NAMESPACE_STD			_LIBCPP_BEGIN_NAMESPACE_STD

	#if defined(_LIBCPP_USING_GETENTROPY)			#if defined(_LIBCPP_USING_GETENTROPY)
	▲ Show 20 Lines • Show All 127 Lines • ▼ Show 20 Lines

	#else			#else
	#error "Random device not implemented for this architecture"			#error "Random device not implemented for this architecture"
	#endif			#endif

	double			double
	random_device::entropy() const _NOEXCEPT			random_device::entropy() const _NOEXCEPT
	{			{
				#if defined(_LIBCPP_USING_DEV_RANDOM) && defined(RNDGETENTCNT)
				curdeiusAuthorUnsubmitted Done Reply Inline Actions This could be guarded even more if we wanted. E.g. defining `_LIBCPP_USING_IOCTL/LINUX_RANDOM_H`, but personally I think that just checking for `RNDGETENTCNT` is enough. curdeius: This could be guarded even more if we wanted. E.g. defining…
				int ent;
				if (::ioctl(__f_, RNDGETENTCNT, &ent) < 0)
				return 0;

				if (ent < 0)
				return 0;

				if (ent > std::numeric_limits<result_type>::digits)
				return std::numeric_limits<result_type>::digits;

				return ent;
				#else
	return 0;			return 0;
				#endif
	}			}

	_LIBCPP_END_NAMESPACE_STD			_LIBCPP_END_NAMESPACE_STD

libcxx/test/std/numerics/rand/rand.device/entropy.pass.cpp

	Show All 10 Lines
	// <random>			// <random>

	// class random_device;			// class random_device;

	// double entropy() const;			// double entropy() const;

	#include <random>			#include <random>
	#include <cassert>			#include <cassert>
				#include <climits>

	#include "test_macros.h"			#include "test_macros.h"

	int main(int, char**)			int main(int, char**) {
	{
	std::random_device r;			std::random_device r;
	double e = r.entropy();			double e = r.entropy();
	((void)e); // Prevent unused warning			assert(e >= 0);
				assert(e <= sizeof(typename std::random_device::result_type) * CHAR_BIT);
				ldionneUnsubmitted Not Done Reply Inline Actions I think we want to make those be `LIBCPP_ASSERT(...)` instead, since the entropy is technically not mandated by the standard. It's just that our implementation behaves that way. ldionne: I think we want to make those be `LIBCPP_ASSERT(...)` instead, since the entropy is technically…
				curdeiusAuthorUnsubmitted Done Reply Inline Actions The standard says this http://eel.is/c++draft/rand.device#5. So entropy should be between min and log2(max+1), where max is max of result_type. At the same time, http://eel.is/c++draft/rand.device#2 says result_type=unsigned int. So the only thing that can change is the size of unsigned int (which can be non-32-bit somewhere). To be precise I should rather `assert(e <= sizeof(result_type) * CHAR_BIT)`. And it should be for whatever implementation of stdlib. WDYT? curdeius: The standard says this http://eel.is/c++draft/rand.device#5. So entropy should be between min…

	return 0;			return 0;
	}			}

This is an archive of the discontinued LLVM Phabricator instance.

[libc++] Use ioctl when available to get random_device entropy.ClosedPublic

Details

Diff Detail

Event Timeline

Revision Contents

Diff 318232

libcxx/src/random.cpp

libcxx/test/std/numerics/rand/rand.device/entropy.pass.cpp

[libc++] Use ioctl when available to get random_device entropy.
ClosedPublic