Data

Tools

Indexes

Applications

Experiments

Open Source Science

cryptorng

Generate random bytes from the OS CSPRNG

https://github.com/coolbutuseless/cryptorng

Science Score: 13.0%

This score indicates how likely this project is to be science-related based on various indicators:

  • CITATION.cff file
  • codemeta.json file
    Found codemeta.json file
  • .zenodo.json file
  • DOI references
  • Academic publication links
  • Academic email domains
  • Institutional organization owner
  • JOSS paper metadata
  • Scientific vocabulary similarity
    Low similarity (17.2%) to scientific vocabulary
Last synced: 10 months ago · JSON representation

Repository

Generate random bytes from the OS CSPRNG

Basic Info
  • Host: GitHub
  • Owner: coolbutuseless
  • License: other
  • Language: C
  • Default Branch: main
  • Size: 58.6 KB
Statistics
  • Stars: 1
  • Watchers: 1
  • Forks: 0
  • Open Issues: 0
  • Releases: 0
Created about 2 years ago · Last pushed about 2 years ago
Metadata Files
Readme Changelog License

README.Rmd 

---
output: github_document
---



```{r, include = FALSE}
knitr::opts_chunk$set(
  collapse = FALSE,
  comment = "#>",
  fig.path = "man/figures/README-",
  out.width = "100%"
)

library(cryptorng)
```

# Generate random numbers from your OS cryptographically secure RNG


![](https://img.shields.io/badge/cool-useless-green.svg)
[![CRAN](http://www.r-pkg.org/badges/version/cryptorng)](https://cran.r-project.org/package=cryptorng)
[![R-CMD-check](https://github.com/coolbutuseless/cryptorng/actions/workflows/R-CMD-check.yaml/badge.svg)](https://github.com/coolbutuseless/cryptorng/actions/workflows/R-CMD-check.yaml)


`{cryptorng}` provides access to your operating system's [cryptographically secure pseudorandom number generator (CSPRNG)](https://en.wikipedia.org/wiki/Cryptographically_secure_pseudorandom_number_generator).

System CSPRNGs provide high-quality, uniform random bytes which are secure against cryptographic analysis.

These bytes are suitable for use in other crypographic processes e.g.

* seeding another random number generator
* as keys, seeds, nonces, salts etc for encryption

#### What sets `{cryptorng}` apart from other RNGs in R?

* These numbers are as random as you're going to get on general-purpose PCs
which don't have specialist RNG hardware.  
* There's no seed to set (the OS sets that internally using 
accumulated system entropy)
    * Depending on your system, the CSPRNG may be continually re-seeded as more 
      entropy becomes available. 
* Multiple threads in parallel won't read the same bytes.

#### How can I generate random values sampled from a uniform distribution?

```{r example}
library(cryptorng)
# uniform random bytes
rcrypto(16)
# uniform random bytes as a hexadecimal string
rcrypto(16, type = 'chr')
# random logical values
rcrypto(16, type = 'lgl')
# uniform random integers
rcrypto(16, type = 'int')
# uniform random doubles in the range [0, 1)
rcrypto(16, type = 'dbl')
```




## Installation

This package can be installed from CRAN

``` r
install.packages('cryptorng')
```

You can install the latest development version from [GitHub](https://github.com/coolbutuseless/cryptorng) with:

``` r
# install.packages('remotes')
remotes::install_github('coolbutuseless/cryptorng')
```

Pre-built source/binary versions can also be installed from [R-universe](https://r-universe.dev)

``` r
install.packages('cryptorng', repos = c('https://coolbutuseless.r-universe.dev', 'https://cloud.r-project.org'))
```



## Technical bits

Major operating systems (e.g. macOS, Linux, Windows) now come with CSPRNG functionality built-in.  
These RNGs (Random Number Generators) are cryptographically secure - meaning that

* bytes generated pass statistical randomness tests
* it is impossible to reconstruct the prior stream of numbers if the current internal
  state of the RNG is revealed
  
These are still only **pseudo**-random number generators though, as the production
of numbers is deterministic given the seed.  So a high entropy seed which is kept
secret is considered standard practice.

For these OS-provided CSPRNGs, the entropy (and the seeding) is provided by 
the OS itself - using such things as hardware RNGs, timing jitter, 
network traffic, disk activity.  The initial seed is never revealed to the user,
and [*reseeding*](https://en.wikipedia.org/wiki//dev/random#BSD_systems) may 
take place to ensure that additional entropy is used when available.


The C function for generating random values varies depending on the OS: 

| OS          | CSPRNG                     | Notes |
|-------------|----------------------------|-------|
| macOS, *BSD | `arc4random_buf()`         | macOS [arc4rand.c](http://www.opensource.apple.com/source/Libc/Libc-1044.10.1/gen/FreeBSD/arc4random.c) |
| Linux       | `SYS_getrandom()` via `syscall()` |    |
| Windows     | `BCryptGenRandom()`        |     |

All of these random number generators are internally seeded by the OS using entropy 
gathered from multiple sources and use random number algorithms which are 
considered cryptographically secure.


## C code

This package and code is MIT licensed.  Please feel free to 
incorporate/adapt this code into your own project.

The following is a snapshot of the core function which calls the appropriate
CSPRNG for your system.

Note: If your system is not supported, please open an [issue](https://github.com/coolbutuseless/cryptorng/issues) with information on 
your systems CSPRNG and/or `/dev/random` information.

```
//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
// Get random bytes from the system RNG  (C Callable)
//
// @param buf pre-allocated buffer in which to put the random bytes
// @param n number of bytes.  Note: when a system RNG runs out of entropy
//        it may return fewer bytes than expected. This function throws an 
//        error in this situation
//~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
void rcrypto(void *buf, size_t n) {
  
  //~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  // macOS and BSD support arc4random_buf()
  //~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
#if defined(__APPLE__) || defined(__FreeBSD__) || defined(__OpenBSD__) || defined(__NetBSD__)
  // void arc4random_buf(void buf[.n], size_t n);
  arc4random_buf(buf, n); 
  
  //~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  // Windows: use BCryptGenRandom
  //~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
#elif defined(_WIN32)  
  // NTSTATUS BCryptGenRandom(
  //     [in, out] BCRYPT_ALG_HANDLE hAlgorithm,
  //     [in, out] PUCHAR            pbBuffer,
  //     [in]      ULONG             cbBuffer,
  //     [in]      ULONG             dwFlags
  // );
  // dwFlags = BCRYPT_USE_SYSTEM_PREFERRED_RNG - Use the system-preferred random 
  // number generator algorithm. The hAlgorithm parameter must be NULL. 
  size_t status = (size_t)BCryptGenRandom( NULL, ( PUCHAR ) buf, n, BCRYPT_USE_SYSTEM_PREFERRED_RNG );
  // Return value is 'NTSTATUS' value. STATUS_SUCCESS = 0.
  if (status != 0) {
    error("cryptorng_windows() error: Status = %zu.\n", status);
  }
  
  //~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
  // Linux use 'Sys_getrandom()'
  //~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
#elif defined(__linux__)
  long status = (long)syscall( SYS_getrandom, buf, n, 0 );
  if (status < 0 || status != n) {
    error("cryptorng_linux() error: Status = %zu.\n", status);
  }
  
#else
#error no secrure rcrypto() implemented for this platform
#endif 
}
```

Owner

  • Name: mikefc
  • Login: coolbutuseless
  • Kind: user
  • Location: Australia

Cool, but useless.

GitHub Events

Total
Last Year

Issues and Pull Requests

Last synced: 10 months ago

All Time
  • Total issues: 2
  • Total pull requests: 0
  • Average time to close issues: about 5 hours
  • Average time to close pull requests: N/A
  • Total issue authors: 1
  • Total pull request authors: 0
  • Average comments per issue: 1.0
  • Average comments per pull request: 0
  • Merged pull requests: 0
  • Bot issues: 0
  • Bot pull requests: 0
Past Year
  • Issues: 0
  • Pull requests: 0
  • Average time to close issues: N/A
  • Average time to close pull requests: N/A
  • Issue authors: 0
  • Pull request authors: 0
  • Average comments per issue: 0
  • Average comments per pull request: 0
  • Merged pull requests: 0
  • Bot issues: 0
  • Bot pull requests: 0
View more stats
Top Authors
Issue Authors
  • coolbutuseless (2)
Pull Request Authors
Top Labels
Issue Labels
Pull Request Labels

Packages

  • Total packages: 1
  • Total downloads:
    • cran 542 last-month
  • Total dependent packages: 0
  • Total dependent repositories: 0
  • Total versions: 3
  • Total maintainers: 1
cran.r-project.org: cryptorng

Access System Cryptographic Pseudorandom Number Generators

  • Versions: 3
  • Dependent Packages: 0
  • Dependent Repositories: 0
  • Downloads: 542 Last month
Rankings
Dependent packages count: 27.8%
Dependent repos count: 35.7%
Average: 49.5%
Downloads: 84.9%
Maintainers (1)
mikefc@coolbutuseless.com
Last synced: 10 months ago

Dependencies

.github/workflows/R-CMD-check.yaml actions
  • actions/checkout v4 composite
  • r-lib/actions/check-r-package v2 composite
  • r-lib/actions/setup-pandoc v2 composite
  • r-lib/actions/setup-r v2 composite
  • r-lib/actions/setup-r-dependencies v2 composite
.github/workflows/rhub.yaml actions
  • r-hub/actions/checkout v1 composite
  • r-hub/actions/platform-info v1 composite
  • r-hub/actions/run-check v1 composite
  • r-hub/actions/setup v1 composite
  • r-hub/actions/setup-deps v1 composite
  • r-hub/actions/setup-r v1 composite
DESCRIPTION cran
  • testthat >= 3.0.0 suggests