xref: /sqlite-3.40.0/src/random.c (revision 18472fa7) 
1 /*
2 ** 2001 September 15
3 **
4 ** The author disclaims copyright to this source code.  In place of
5 ** a legal notice, here is a blessing:
6 **
7 **    May you do good and not evil.
8 **    May you find forgiveness for yourself and forgive others.
9 **    May you share freely, never taking more than you give.
10 **
11 *************************************************************************
12 ** This file contains code to implement a pseudo-random number
13 ** generator (PRNG) for SQLite.
14 **
15 ** Random numbers are used by some of the database backends in order
16 ** to generate random integer keys for tables or random filenames.
17 **
18 ** $Id: random.c,v 1.27 2008/10/07 15:25:48 drh Exp $
19 */
20 #include "sqliteInt.h"
21 
22 
23 /* All threads share a single random number generator.
24 ** This structure is the current state of the generator.
25 */
26 static SQLITE_WSD struct sqlite3PrngType {
27   unsigned char isInit;          /* True if initialized */
28   unsigned char i, j;            /* State variables */
29   unsigned char s[256];          /* State variables */
30 } sqlite3Prng = { 0, };
31 
32 /*
33 ** Get a single 8-bit random value from the RC4 PRNG.  The Mutex
34 ** must be held while executing this routine.
35 **
36 ** Why not just use a library random generator like lrand48() for this?
37 ** Because the OP_NewRowid opcode in the VDBE depends on having a very
38 ** good source of random numbers.  The lrand48() library function may
39 ** well be good enough.  But maybe not.  Or maybe lrand48() has some
40 ** subtle problems on some systems that could cause problems.  It is hard
41 ** to know.  To minimize the risk of problems due to bad lrand48()
42 ** implementations, SQLite uses this random number generator based
43 ** on RC4, which we know works very well.
44 **
45 ** (Later):  Actually, OP_NewRowid does not depend on a good source of
46 ** randomness any more.  But we will leave this code in all the same.
47 */
48 static int randomByte(void){
49   unsigned char t;
50 
51 
52   /* The "wsdPrng" macro will resolve to the pseudo-random number generator
53   ** state vector.  If writable static data is unsupported on the target,
54   ** we have to locate the state vector at run-time.  In the more common
55   ** case where writable static data is supported, wsdPrng can refer directly
56   ** to the "sqlite3Prng" state vector declared above.
57   */
58 #ifdef SQLITE_OMIT_WSD
59   struct sqlite3PrngType *p = &GLOBAL(struct sqlite3PrngType, sqlite3Prng);
60 # define wsdPrng p[0]
61 #else
62 # define wsdPrng sqlite3Prng
63 #endif
64 
65 
66   /* Initialize the state of the random number generator once,
67   ** the first time this routine is called.  The seed value does
68   ** not need to contain a lot of randomness since we are not
69   ** trying to do secure encryption or anything like that...
70   **
71   ** Nothing in this file or anywhere else in SQLite does any kind of
72   ** encryption.  The RC4 algorithm is being used as a PRNG (pseudo-random
73   ** number generator) not as an encryption device.
74   */
75   if( !wsdPrng.isInit ){
76     int i;
77     char k[256];
78     wsdPrng.j = 0;
79     wsdPrng.i = 0;
80     sqlite3OsRandomness(sqlite3_vfs_find(0), 256, k);
81     for(i=0; i<256; i++){
82       wsdPrng.s[i] = i;
83     }
84     for(i=0; i<256; i++){
85       wsdPrng.j += wsdPrng.s[i] + k[i];
86       t = wsdPrng.s[wsdPrng.j];
87       wsdPrng.s[wsdPrng.j] = wsdPrng.s[i];
88       wsdPrng.s[i] = t;
89     }
90     wsdPrng.isInit = 1;
91   }
92 
93   /* Generate and return single random byte
94   */
95   wsdPrng.i++;
96   t = wsdPrng.s[wsdPrng.i];
97   wsdPrng.j += t;
98   wsdPrng.s[wsdPrng.i] = wsdPrng.s[wsdPrng.j];
99   wsdPrng.s[wsdPrng.j] = t;
100   t += wsdPrng.s[wsdPrng.i];
101   return wsdPrng.s[t];
102 }
103 
104 /*
105 ** Return N random bytes.
106 */
107 void sqlite3_randomness(int N, void *pBuf){
108   unsigned char *zBuf = pBuf;
109 #if SQLITE_THREADSAFE
110   sqlite3_mutex *mutex = sqlite3MutexAlloc(SQLITE_MUTEX_STATIC_PRNG);
111 #endif
112   sqlite3_mutex_enter(mutex);
113   while( N-- ){
114     *(zBuf++) = randomByte();
115   }
116   sqlite3_mutex_leave(mutex);
117 }
118 
119 #ifndef SQLITE_OMIT_BUILTIN_TEST
120 /*
121 ** For testing purposes, we sometimes want to preserve the state of
122 ** PRNG and restore the PRNG to its saved state at a later time, or
123 ** to reset the PRNG to its initial state.  These routines accomplish
124 ** those tasks.
125 **
126 ** The sqlite3_test_control() interface calls these routines to
127 ** control the PRNG.
128 */
129 static SQLITE_WSD struct sqlite3PrngType sqlite3SavedPrng = { 0, };
130 void sqlite3PrngSaveState(void){
131   memcpy(
132     &GLOBAL(struct sqlite3PrngType, sqlite3SavedPrng),
133     &GLOBAL(struct sqlite3PrngType, sqlite3Prng),
134     sizeof(sqlite3Prng)
135   );
136 }
137 void sqlite3PrngRestoreState(void){
138   memcpy(
139     &GLOBAL(struct sqlite3PrngType, sqlite3Prng),
140     &GLOBAL(struct sqlite3PrngType, sqlite3SavedPrng),
141     sizeof(sqlite3Prng)
142   );
143 }
144 void sqlite3PrngResetState(void){
145   GLOBAL(struct sqlite3PrngType, sqlite3Prng).isInit = 0;
146 }
147 #endif /* SQLITE_OMIT_BUILTIN_TEST */
148