License	BSD-style
Maintainer	Vincent Hanquez <vincent@snarc.org>
Stability	experimental
Portability	Good
Safe Haskell	None
Language	Haskell98

Crypto.Random.API

Contents

System Random generator

Description

Synopsis

class CPRG g where
- cprgNeedReseed :: g -> ReseedPolicy
- cprgSupplyEntropy :: ByteString -> g -> g
- cprgGenBytes :: Int -> g -> (ByteString, g)
data ReseedPolicy
- = NeverReseed
- | ReseedInBytes Word64
genRandomBytes :: CPRG g => Int -> g -> (ByteString, g)
genRandomBytes' :: CPRG g => Int -> g -> ([ByteString], g)
withRandomBytes :: CPRG g => g -> Int -> (ByteString -> a) -> (a, g)
getSystemEntropy :: Int -> IO ByteString
data SystemRandom
getSystemRandomGen :: IO SystemRandom

Documentation

class CPRG g where Source #

A class of Cryptographic Secure Random generator.

The main difference with the generic haskell RNG is that it return bytes instead of integer.

It is quite similar to the CryptoRandomGen class in crypto-api except that error are not returned to the user. Instead the user is suppose to handle reseeding by using the NeedReseed and SupplyEntropy methods. For other type of errors, the user is expected to generate bytes with the parameters bounds explicity defined here.

The CPRG need to be able to generate up to 2^20 bytes in one call,

Methods

cprgNeedReseed :: g -> ReseedPolicy Source #

Provide a way to query the CPRG to calculate when new entropy is required to be supplied so the CPRG doesn't repeat output, and break assumptions. This returns the number of bytes before which supply entropy should have been called.

cprgSupplyEntropy :: ByteString -> g -> g Source #

Supply entropy to the CPRG, that can be used now or later to reseed the CPRG. This should be used in conjunction to NeedReseed to know when to supply entropy.

cprgGenBytes :: Int -> g -> (ByteString, g) Source #

Generate bytes using the CPRG and the number specified.

For user of the API, it's recommended to use genRandomBytes instead of this method directly. the CPRG need to be able to supply at minimum 2^20 bytes at a time.

Instances

Instances details

CPRG SystemRandom Source #
Instance details Defined in Crypto.Random.API Methods cprgNeedReseed :: SystemRandom -> ReseedPolicy Source # cprgSupplyEntropy :: ByteString -> SystemRandom -> SystemRandom Source # cprgGenBytes :: Int -> SystemRandom -> (ByteString, SystemRandom) Source #

data ReseedPolicy Source #

This is the reseed policy requested by the CPRG

Constructors

NeverReseed	there is no need to reseed as either the RG doesn't supports it, it's done automatically or pratically the reseeding period exceed a Word64 type.
ReseedInBytes Word64	the RG need to be reseed in the number of bytes joined to the type. it should be done before the number reached 0, otherwise an user of the RG might request too many bytes and get repeated random bytes.

Instances

Instances details

Eq ReseedPolicy Source #
Instance details Defined in Crypto.Random.API Methods (==) :: ReseedPolicy -> ReseedPolicy -> Bool (/=) :: ReseedPolicy -> ReseedPolicy -> Bool
Show ReseedPolicy Source #
Instance details Defined in Crypto.Random.API Methods showsPrec :: Int -> ReseedPolicy -> ShowS show :: ReseedPolicy -> String showList :: [ReseedPolicy] -> ShowS

genRandomBytes Source #

Arguments

:: CPRG g
=> Int	number of bytes to return
-> g	CPRG to use
-> (ByteString, g)

Generate bytes using the cprg in parameter.

If the number of bytes requested is really high, it's preferable to use genRandomBytes for better memory efficiency.

genRandomBytes' Source #

Arguments

:: CPRG g
=> Int	number of bytes to return
-> g	CPRG to use
-> ([ByteString], g)

Generate bytes using the cprg in parameter.

This is not tail recursive and an excessive len (>= 2^29) parameter would result in stack overflow.

withRandomBytes :: CPRG g => g -> Int -> (ByteString -> a) -> (a, g) Source #

this is equivalent to using Control.Arrow first with genRandomBytes.

namely it generate len bytes and map the bytes to the function f

getSystemEntropy :: Int -> IO ByteString Source #

Return system entropy using the entropy package getEntropy

System Random generator

data SystemRandom Source #

This is a simple generator that pull bytes from the system entropy directly. Its randomness and security properties are absolutely depends on the underlaying system implementation.

Instances

Instances details

CPRG SystemRandom Source #
Instance details Defined in Crypto.Random.API Methods cprgNeedReseed :: SystemRandom -> ReseedPolicy Source # cprgSupplyEntropy :: ByteString -> SystemRandom -> SystemRandom Source # cprgGenBytes :: Int -> SystemRandom -> (ByteString, SystemRandom) Source #

getSystemRandomGen :: IO SystemRandom Source #

Get a random number generator based on the standard system entropy source