hg/stx-libbasic2: comparison Random.st

equal deleted inserted replaced

-:5afe23725daf
+:bfae9f81787a
 plus some value depending on the memory allocation state,
 plus a random salt, and shuffles those bits around.
 The entropy returned should be reasonable enough for a good seed of a good rnd
 generator. However, keep in mind, that it only has a limited number of entropy bits
 (in the order of 32).
-But it shoud be much better than what is commonly used in older
+But it should be much better than what is commonly used in older
 programs (current time) or even a constant."
-|newSeed hash|
+|hash|
+hash := MD5Stream new.
 RandomSalt isNil ifTrue:[
 RandomSalt := 1.
 ] ifFalse:[
 RandomSalt := RandomSalt + 1.
 ].
-newSeed := RandomSalt + (Time microsecondClockValue bitXor:OperatingSystem getProcessId).
+hash nextPut:RandomSalt.
-newSeed := newSeed bitXor:(ObjectMemory addressOf:(Object new)).
+hash nextPutAll:Time microsecondClockValue asLargeInteger digitBytes.
-newSeed := newSeed bitXor:(ObjectMemory oldSpaceUsed).
+hash nextPutAll:OperatingSystem getProcessId asLargeInteger digitBytes.
+hash nextPutAll:(ObjectMemory addressOf:(Object new)) asLargeInteger digitBytes.
+hash nextPutAll:(ObjectMemory oldSpaceUsed) asLargeInteger digitBytes.
+hash nextPutAll:(ObjectMemory newSpaceUsed) asLargeInteger digitBytes.
 [
-newSeed := newSeed bitXor:(OperatingSystem getCPUCycleCount).
+hash nextPutAll:(OperatingSystem getCPUCycleCount) asLargeInteger digitBytes.
 ] on:PrimitiveFailure do:[].
-"/ any other easy sources of entropy?
+"/ any other cheap sources of entropy?
-"/ how likely is that? - paranoia
-newSeed = 0 ifTrue:[ newSeed := Time microsecondClockValue ].
-"/ The above gives us a 5-8 byte number, but some high bits are constant.
-"/ (the constant high bits from the above do not provide any entropy)
-"/ so the effective entropy is more in the order of 32 bits.
-"/ if called shortly in a row, the returned values are only affected by
-"/ the amount of memory allocated in between (and if there are any newspace reclamations),
-"/ the real time in between and the number of cpu cycles between,
-"/ plus the salt counter.
-"/ Hashing should make this less likely to be predicted.
 "/ I think there is no problem in that MD5 is not a secure hash algo here - the idea is to shuffle the bits around a bit
 "/ (because the numbers above usually have many high bits in common)
 "/ and then condense the bits into a smaller number.
 "/ Any comment from a crypto guy here - I am willing to change this to some other hash, if that makes a problem
-hash := MD5Stream hashValueOf:(newSeed asLargeInteger digitBytes).
+"/ Seeding rnd generators should take some bits from the returned number (i.e. their max. seed size)
-"/ still the same number of entropy bits, bit no longer limited to an unknown number of low bits,
+^ LargeInteger digitBytes:hash hashValue.
-"/ bit arbitrarily spread among the hash bytes.
-"/ Seeding rnd generators should Xor the returned 8 bytes to their max. seed size
-^ LargeInteger digitBytes:hash.
 "
 10 timesRepeat:[Transcript showCR:self randomSeed].
+10 timesRepeat:[Transcript showCR:(self randomSeed bitAnd:16rFFFF)].
 self randomSeed bitAnd:16rFFFFFFFF
 "
 ! !
 !Random class methodsFor:'testing'!
 ! !
 !Random class methodsFor:'documentation'!
 version
-^ '$Header: /cvs/stx/stx/libbasic2/Random.st,v 1.55 2014-10-02 14:50:55 cg Exp $'
+^ '$Header: /cvs/stx/stx/libbasic2/Random.st,v 1.56 2014-10-02 15:36:18 cg Exp $'
 !
 version_CVS
-^ '$Header: /cvs/stx/stx/libbasic2/Random.st,v 1.55 2014-10-02 14:50:55 cg Exp $'
+^ '$Header: /cvs/stx/stx/libbasic2/Random.st,v 1.56 2014-10-02 15:36:18 cg Exp $'
 ! !

changeset 3414	bfae9f81787a
parent 3403	bf8cccac67c9
child 3431	4ece2027bd33