Skip to content

Commit

Permalink
changed to unsafe fn, added safety comments, renamed some variables i…
Browse files Browse the repository at this point in the history 
…n fill_bytes to be more consistent with other libraries
  • Loading branch information
@nstilt1
nstilt1 committed Dec 16, 2023
1 parent 75a29fd commit df99ca5
Show file tree
Hide file tree
Showing 3 changed files with 42 additions and 49 deletions.
41 changes: 14 additions & 27 deletions chacha20/src/lib.rs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -265,51 +265,38 @@ impl<R: Rounds, V: Variant> ChaChaCore<R, V> {
}
}

/// Generates 4 blocks in parallel with avx2 & neon, but merely fills
/// 4 blocks with sse2 & soft, writing them to the pointer's address.
/// Generates 256 bytes of output with backends, then blindly writes them to dest_ptr
///
/// # Safety
/// `dest_ptr` must have at least 256 bytes available to be overwritten, or else it
/// could produce undefined behavior.
#[cfg(feature = "rand_core")]
fn generate(&mut self, dest_ptr: *mut u8) {
unsafe fn generate(&mut self, dest_ptr: *mut u8) {
assert!(!dest_ptr.is_null());
cfg_if! {
if #[cfg(chacha20_force_soft)] {
unsafe {
backends::soft::Backend(self).rng_gen_ks_blocks(dest_ptr);
}
backends::soft::Backend(self).rng_gen_ks_blocks(dest_ptr);
} else if #[cfg(any(target_arch = "x86", target_arch = "x86_64"))] {
cfg_if! {
if #[cfg(chacha20_force_avx2)] {
unsafe {
backends::avx2::rng_inner::<R, V>(self, dest_ptr);
}
backends::avx2::rng_inner::<R, V>(self, dest_ptr);
} else if #[cfg(chacha20_force_sse2)] {
unsafe {
backends::sse2::rng_inner::<R, V>(self, dest_ptr);
}
backends::sse2::rng_inner::<R, V>(self, dest_ptr);
} else {
let (avx2_token, sse2_token) = self.tokens;
if avx2_token.get() {
unsafe {
backends::avx2::rng_inner::<R, V>(self, dest_ptr);
}
backends::avx2::rng_inner::<R, V>(self, dest_ptr);
} else if sse2_token.get() {
unsafe {
backends::sse2::rng_inner::<R, V>(self, dest_ptr);
}
backends::sse2::rng_inner::<R, V>(self, dest_ptr);
} else {
unsafe {
backends::soft::Backend(self).rng_gen_ks_blocks(dest_ptr);
}
backends::soft::Backend(self).rng_gen_ks_blocks(dest_ptr);
}
}
}
} else if #[cfg(all(chacha20_force_neon, target_arch = "aarch64", target_feature = "neon"))] {
unsafe {
backends::neon::rng_inner::<R, V>(self, dest_ptr);
}
backends::neon::rng_inner::<R, V>(self, dest_ptr);
} else {
unsafe {
backends::soft::Backend(self).rng_gen_ks_blocks(dest_ptr);
}
backends::soft::Backend(self).rng_gen_ks_blocks(dest_ptr);
}
}
}
Expand Down
44 changes: 25 additions & 19 deletions chacha20/src/rng.rs
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,9 +6,6 @@
// option. This file may not be copied, modified, or distributed
// except according to those terms.

// This was commented out due to using pointers
//#![cfg_attr(not(test), forbid(unsafe_code))]

use core::fmt::Debug;

use rand_core::{impls::fill_via_u32_chunks, CryptoRng, Error, RngCore, SeedableRng};
Expand Down Expand Up @@ -314,31 +311,36 @@ macro_rules! impl_chacha_rng {
}
}

// write to all of the full 256-byte chunks by excluding the last 8 bits from the len
// for the upper bound index
let writable_block_bytes = (dest_len - dest_pos) & !(0xFF);
//let (mut chunks, mut tail) = tail.split_at(writable_block_bytes);
// Calculate how many bytes we can write full 256-byte chunks to by
// excluding the last 8 bits from `(dest_len - dest_pos)`. Those 8
// bits can amount to only 255 byte indices since it measures length.
let writable_chunk_bytes = (dest_len - dest_pos) & !0xFF;

let num_blocks = writable_block_bytes >> 8;
// Calculate how many 256-byte chunks are available to write to,
// equivalent to writable_chunk_bytes / 256
let num_chunks = writable_chunk_bytes >> 8;

// SAFETY: This only writes to indices that have not yet been written
// to, and we have determined how many chunks are available to be
// written to.
unsafe {
let mut block_ptr = dest.as_mut_ptr();
block_ptr = block_ptr.add(dest_pos);
for _i in 0..num_blocks {
self.core.generate(block_ptr);
block_ptr = block_ptr.add(256);
let mut chunk_ptr = dest.as_mut_ptr();
chunk_ptr = chunk_ptr.add(dest_pos);
// This will not run if `num_chunks` is 0
for _i in 0..num_chunks {
self.core.generate(chunk_ptr);
chunk_ptr = chunk_ptr.add(256);
}
}

dest_pos += writable_block_bytes;
// index is at the maximum value, and the dest
// has been filled
dest_pos += writable_chunk_bytes;
// self.index is currently at the maximum value
if dest_pos == dest_len {
// dest has been filled
return;
}
// refill buffer before filling the tail
self.index = 0;
self.core.generate(self.buffer.0.as_mut_ptr() as *mut u8);
self.generate_and_set(0);

let (consumed_u32, _filled_u8) =
fill_via_u32_chunks(&self.buffer.as_ref()[self.index..], &mut dest[dest_pos..]);
Expand Down Expand Up @@ -378,7 +380,11 @@ macro_rules! impl_chacha_rng {
#[inline]
pub fn generate_and_set(&mut self, index: usize) {
assert!(index < self.buffer.as_ref().len());
self.core.generate(self.buffer.0.as_mut_ptr() as *mut u8);
// SAFETY: `self.buffer.0` is 256 bytes long, allowing `generate()`
// to be called safely.
unsafe {
self.core.generate(self.buffer.0.as_mut_ptr() as *mut u8);
}
self.index = index;
}
// The buffer is a 4-block window, i.e. it is always at a block-aligned position in the
Expand Down
6 changes: 3 additions & 3 deletions chacha20/src/variants.rs
View file
Original file line number Diff line number Diff line change
@@ -1,6 +1,6 @@
/// This file was made primarily because VariantCounter needs to be "public"
/// in order for Variant to compile. This way, we don't need to expose
/// VariantCounter when it is only for internal use.
//! Distinguishing features of ChaCha variants.
//!
//! To be revisited for the 64-bit counter.

/// A trait that distinguishes some ChaCha variants
pub trait Variant: Clone {
Expand Down

0 comments on commit df99ca5

Please sign in to comment.