Skip to content

Limit OsRng to a single file handle when reading from a file #239

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 2 commits into from
Jan 30, 2018
Merged

Limit OsRng to a single file handle when reading from a file #239

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
651ec39
Limit OsRng to a single file handle when reading from a file
dhardy Jan 16, 2018
92cde65
Increase minimum Rustc version to 1.22
dhardy Jan 18, 2018
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion .travis.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,7 @@ sudo: false

matrix:
include:
- rust: 1.15.0
- rust: 1.22.0
script:
- cargo test
- cargo build --no-default-features # we cannot exclude doc tests
Expand Down
69 changes: 49 additions & 20 deletions src/os.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -13,6 +13,9 @@

use std::fmt;
use std::io::Read;
#[allow(unused)] use std::fs::File;
#[allow(unused)] use std::path::Path;
#[allow(unused)] use std::sync::{Once, Mutex, ONCE_INIT};

use {Rng, Error, ErrorKind, impls};

Expand Down Expand Up @@ -101,15 +104,53 @@ impl Rng for OsRng {
}

// Specialisation of `ReadRng` for our purposes
//
// Note: all instances use a single internal file handle
#[derive(Debug)]
struct ReadRng<R> (R);
#[allow(unused)] // not used by all targets
struct ReadRng {}

// TODO: remove outer Option when `Mutex::new(None)` is a constant expression
static mut READ_RNG_FILE: Option<Mutex<Option<File>>> = None;
static READ_RNG_ONCE: Once = ONCE_INIT;

impl<R: Read> ReadRng<R> {
#[allow(unused)] // not used by all targets
#[allow(unused)] // not used by all targets
impl ReadRng {
// Open a `File` for the given `path`.
//
// Uses a mutex on a static object to limit `OsRng` to a single file descriptor.
fn open<P: AsRef<Path>>(path: P) -> Result<ReadRng, Error> {
READ_RNG_ONCE.call_once(|| {
unsafe { READ_RNG_FILE = Some(Mutex::new(None)) }
});

// We try opening the file outside the `call_once` fn because we cannot
// clone the error, thus we must retry on failure.

let mutex = unsafe{ READ_RNG_FILE.as_ref().unwrap() };
let mut guard = mutex.lock().unwrap();
if (*guard).is_none() {
let file = File::open(path).map_err(|err| Error::with_cause(
ErrorKind::Unavailable,
"error opening random device",
err
))?;
*guard = Some(file);
}

Ok(ReadRng {})
}

fn try_fill_bytes(&mut self, dest: &mut [u8]) -> Result<(), Error> {
if dest.len() == 0 { return Ok(()); }

// Since we have an instance of Self, we can assume that our memory was
// set with a valid object.
let mutex = unsafe{ READ_RNG_FILE.as_ref().unwrap() };
let mut guard = mutex.lock().unwrap();
let mut file = (*guard).as_mut().unwrap();
// Use `std::io::read_exact`, which retries on `ErrorKind::Interrupted`.
self.0.read_exact(dest).map_err(|err| {
file.read_exact(dest).map_err(|err| {
Error::with_cause(ErrorKind::Unavailable, "error reading random device", err)
})
}
Expand All @@ -131,7 +172,6 @@ mod imp {
use {Error, ErrorKind};

use std::io;
use std::fs::File;

#[cfg(all(target_os = "linux",
any(target_arch = "x86_64",
Expand Down Expand Up @@ -243,7 +283,7 @@ mod imp {
#[derive(Debug)]
enum OsRngInner {
OsGetrandomRng,
OsReadRng(ReadRng<File>),
OsReadRng(ReadRng),
}

impl OsRng {
Expand All @@ -252,11 +292,7 @@ mod imp {
return Ok(OsRng { inner: OsGetrandomRng });
}

let reader = File::open("/dev/urandom").map_err(|err| {
Error::with_cause(ErrorKind::Unavailable, "error opening random device", err)
})?;
let reader_rng = ReadRng(reader);

let reader_rng = ReadRng::open("/dev/urandom")?;
Ok(OsRng { inner: OsReadRng(reader_rng) })
}

Expand Down Expand Up @@ -411,23 +447,16 @@ mod imp {
#[cfg(target_os = "redox")]
mod imp {
use {Error, ErrorKind};

use std::io;
use std::fs::File;
use super::ReadRng;

#[derive(Debug)]
pub struct OsRng {
inner: ReadRng<File>,
inner: ReadRng,
}

impl OsRng {
pub fn new() -> Result<OsRng, Error> {
let reader = File::open("rand:").map_err(|err| {
Error::with_cause(ErrorKind::Unavailable, "error opening random device", err)
})?;
let reader_rng = ReadRng(reader);

let reader_rng = ReadRng::open("rand:")?;
Ok(OsRng { inner: reader_rng })
}
pub fn try_fill_bytes(&mut self, v: &mut [u8]) -> Result<(), Error> {
Expand Down