19 alignas (16)
unsigned char mem[SIZE];
40 static constexpr uint64_t MWC_A3 = 0xff377e26f82da74a;
55 const __uint128_t t = MWC_A3 * __uint128_t (state[0]) + state[3];
62using FastRng = Mwc256;
81void sha3_224_hash (
const void *data,
size_t data_length, uint8_t hashvalue[28]);
99void sha3_256_hash (
const void *data,
size_t data_length, uint8_t hashvalue[32]);
117void sha3_384_hash (
const void *data,
size_t data_length, uint8_t hashvalue[48]);
135void sha3_512_hash (
const void *data,
size_t data_length, uint8_t hashvalue[64]);
153void shake128_hash (
const void *data,
size_t data_length, uint8_t *hashvalues,
size_t n);
171void shake256_hash (
const void *data,
size_t data_length, uint8_t *hashvalues,
size_t n);
177 union alignas (2 * sizeof (uint64_t))
184 explicit KeccakF1600 ();
186 uint64_t& operator[] (
int index) {
return A[index]; }
187 uint64_t operator[] (
int index)
const {
return A[index]; }
188 void permute (uint32_t n_rounds);
190 byte (
size_t state_index)
192#if __BYTE_ORDER == __LITTLE_ENDIAN
193 return bytes[(state_index / 8) * 8 + (state_index % 8)];
194#elif __BYTE_ORDER == __BIG_ENDIAN
195 return bytes[(state_index / 8) * 8 + (8 - 1 - (state_index % 8))];
197# error "Unknown __BYTE_ORDER"
212 template<
typename RandomAccessIterator>
void
213 generate (RandomAccessIterator begin, RandomAccessIterator end)
219 *begin++ =
Value (rbits);
220 if (
sizeof (
Value) <= 4 && begin != end)
221 *begin++ =
Value (rbits >> 32);
233 const uint16_t bit_rate_, n_rounds_;
235 Lib::KeccakF1600 state_;
242 inline size_t n_nums()
const {
return bit_rate_ / 64; }
248 KeccakRng (uint16_t hidden_state_capacity, uint16_t n_rounds) :
249 bit_rate_ (1600 - hidden_state_capacity), n_rounds_ (n_rounds), opos_ (
n_nums())
251 ASE_ASSERT_RETURN (hidden_state_capacity > 0 && hidden_state_capacity <= 1600 - 64);
256 void discard (
unsigned long long count);
257 void xor_seed (
const uint64_t *seeds,
size_t n_seeds);
259 void seed (uint64_t seed_value = 1) {
seed (&seed_value, 1); }
262 seed (
const uint64_t *seeds,
size_t n_seeds)
268 template<
class SeedSeq>
void
272 seed_sequence.generate (&u32[0], &u32[50]);
274 for (
size_t i = 0; i < 25; i++)
275 u64[i] = u32[i * 2] | (
uint64_t (u32[i * 2 + 1]) << 32);
287 return state_[opos_++];
292 template<
typename RandomAccessIterator>
void
293 generate (RandomAccessIterator begin, RandomAccessIterator end)
299 *begin++ =
Value (rbits);
300 if (
sizeof (
Value) <= 4 && begin != end)
301 *begin++ =
Value (rbits >> 32);
308 for (
size_t i = 0; i < 25; i++)
309 if (lhs.state_[i] != rhs.state_[i])
311 return lhs.opos_ == rhs.opos_ && lhs.bit_rate_ == rhs.bit_rate_;
317 return !(lhs == rhs);
332 template<
typename CharT,
typename Traits>
337 const typename IOS::fmtflags saved_flags = os.flags();
338 os.flags (IOS::dec | IOS::fixed | IOS::left);
339 const CharT space = os.widen (
' ');
340 const CharT saved_fill = os.fill();
343 for (
size_t i = 0; i < 25; i++)
344 os << space << self.state_[i];
345 os.flags (saved_flags);
346 os.fill (saved_fill);
350 template<
typename CharT,
typename Traits>
355 const typename IOS::fmtflags saved_flags = is.flags();
356 is.flags (IOS::dec | IOS::skipws);
359 for (
size_t i = 0; i < 25; i++)
360 is >> self.state_[i];
361 is.flags (saved_flags);
374 template<
class SeedSeq>
389 template<
class SeedSeq>
404 template<
class SeedSeq>
422 static constexpr const uint64_t A = 6364136223846793005ULL;
427 return (bits >> offset) | (bits << ((32 - offset) & 31));
434 return ror32 ((input ^ (input >> 18)) >> 27, input >> 59);
438 template<
class SeedSeq>
439 explicit Pcg32Rng (SeedSeq &seed_sequence) : increment_ (0), accu_ (0) {
seed (seed_sequence); }
441 explicit Pcg32Rng (uint64_t offset, uint64_t sequence);
447 void seed (uint64_t offset, uint64_t sequence);
449 template<
class SeedSeq>
void
453 seed_sequence.generate (&seeds[0], &seeds[2]);
454 seed (seeds[0], seeds[1]);
461 accu_ = A * accu_ + increment_;
462 return pcg_xsh_rr (lcgout);
473template<
class Num>
static inline constexpr uint64_t
474fnv1a_consthash64 (
const Num *ztdata)
476 static_assert (
sizeof (Num) <= 1,
"");
479 hash = 0x100000001b3 * (uint8_t (*ztdata++) ^ hash);
484template<
class Num>
static inline constexpr uint64_t
485fnv1a_consthash64 (
const Num *
const data,
size_t length)
487 static_assert (
sizeof (Num) <= 1,
"");
489 for (
size_t j = 0; j < length; j++)
490 hash = 0x100000001b3 * (uint8_t (data[j]) ^
hash);
504template<
class Num>
static ASE_CONST
inline uint32_t
505pcg_hash32 (
const Num *data,
size_t length, uint64_t seed)
507 static_assert (
sizeof (Num) <= 1,
"");
510 h ^= 0x14057b7ef767814fULL;
514 h *= 6364136223846793005ULL;
517 const size_t rsh = h >> 59;
518 const uint32_t xsh = (h ^ (h >> 18)) >> 27;
519 const uint32_t rot = (xsh >> rsh) | (xsh << (32 - rsh));
533template<
class Num>
static ASE_CONST
inline uint64_t
534pcg_hash64 (
const Num *data,
size_t length, uint64_t seed)
536 static_assert (
sizeof (Num) <= 1,
"");
539 h ^= 0x14057b7ef767814fULL;
543 h *= 6364136223846793005ULL;
546 const size_t rsh = h >> 59;
547 const uint64_t rxs = h ^ (h >> (5 + rsh));
548 const uint64_t m = rxs * 12605985483714917081ULL;
555pcg_hash64 (
const char *ztdata, uint64_t seed)
559 h ^= 0x14057b7ef767814fULL;
563 h *= 6364136223846793005ULL;
566 const size_t rsh = h >> 59;
567 const uint64_t rxs = h ^ (h >> (5 + rsh));
568 const uint64_t m = rxs * 12605985483714917081ULL;
585template<
class Num>
static ASE_CONST
inline uint64_t
586byte_hash64 (
const Num *data,
size_t length)
588 static_assert (
sizeof (Num) <= 1,
"");
589 return pcg_hash64 (data, length, hash_secret());
596 return pcg_hash64 (
string.
data(),
string.
size(), hash_secret());
601string_hash64 (
const char *ztdata)
603 return pcg_hash64 (ztdata, hash_secret());
AutoSeeder provides non-deterministic seeding entropy.
uint64 operator()() const
Generate non-deterministic 64bit random value.
void generate(RandomAccessIterator begin, RandomAccessIterator end)
Fill the range [begin, end) with random unsigned integer values.
static uint64 random()
Generate non-deterministic 64bit random value.
KeccakCryptoRng - A KeccakF1600 based cryptographic quality pseudo-random number generator.
KeccakCryptoRng(SeedSeq &seed_sequence)
Initialize and seed the generator from seed_sequence.
KeccakCryptoRng()
Initialize and seed the generator from a system specific nondeterministic random source.
KeccakFastRng - A KeccakF1600 based fast pseudo-random number generator.
KeccakFastRng()
Initialize and seed the generator from a system specific nondeterministic random source.
KeccakFastRng(SeedSeq &seed_sequence)
Initialize and seed the generator from seed_sequence.
KeccakGoodRng - A KeccakF1600 based good quality pseudo-random number generator.
KeccakGoodRng(SeedSeq &seed_sequence)
Initialize and seed the generator from seed_sequence.
KeccakGoodRng()
Initialize and seed the generator from a system specific nondeterministic random source.
KeccakRng - A KeccakF1600 based pseudo-random number generator.
void seed(const uint64_t *seeds, size_t n_seeds)
Reinitialize the generator state using a nuber of 64 bit seeds.
uint64_t result_type
Integral type of the KeccakRng generator results.
KeccakRng(uint16_t hidden_state_capacity, uint16_t n_rounds)
Create an unseeded Keccak PRNG with specific capacity and number of rounds, for experts only.
void generate(RandomAccessIterator begin, RandomAccessIterator end)
Fill the range [begin, end) with random unsigned integer values.
friend std::basic_ostream< CharT, Traits > & operator<<(std::basic_ostream< CharT, Traits > &os, const KeccakRng &self)
Serialize generator state into an OStream.
result_type operator()()
Generate uniformly distributed 32 bit pseudo random number.
size_t bit_capacity() const
Amount of bits used to store hidden random number generator state.
uint64_t random()
Generate uniformly distributed 64 bit pseudo random number.
void forget()
Discard 2^256 bits of the current generator state.
void auto_seed()
Seed the generator from a system specific nondeterministic random source.
void discard(unsigned long long count)
Discard count consecutive random values.
void seed(uint64_t seed_value=1)
Reinitialize the generator state using a 64 bit seed_value.
friend bool operator!=(const KeccakRng &lhs, const KeccakRng &rhs)
Compare two generators for state inequality.
size_t n_nums() const
Amount of 64 bit random numbers per generated block.
result_type min() const
Minimum of the result type, for uint64_t that is 0.
void seed(SeedSeq &seed_sequence)
Seed the generator state from a seed_sequence.
void xor_seed(const uint64_t *seeds, size_t n_seeds)
Incorporate seed_values into the current generator state.
friend bool operator==(const KeccakRng &lhs, const KeccakRng &rhs)
Compare two generators for state equality.
~KeccakRng()
The destructor resets the generator state to avoid leaving memory trails.
result_type max() const
Maximum of the result type, for uint64_t that is 18446744073709551615.
friend std::basic_istream< CharT, Traits > & operator>>(std::basic_istream< CharT, Traits > &is, KeccakRng &self)
Deserialize generator state from an IStream.
Marsaglia multiply-with-carry generator, period ca 2^255.
Pcg32Rng is a permutating linear congruential PRNG.
Pcg32Rng(SeedSeq &seed_sequence)
Initialize and seed from seed_sequence.
void auto_seed()
Seed the generator from a system specific nondeterministic random source.
uint32_t random()
Generate uniformly distributed 32 bit pseudo random number.
Pcg32Rng()
Initialize and seed the generator from a system specific nondeterministic random source.
void seed(SeedSeq &seed_sequence)
Seed the generator state from a seed_sequence.
void seed(uint64_t offset, uint64_t sequence)
Seed by seeking to position offset within stream sequence.
#define ASE_ASSERT_RETURN(expr,...)
Return from the current function if expr evaluates to false and issue an assertion warning.
#define ASE_UNLIKELY(expr)
Compiler hint to optimize for expr evaluating to false.
#define ASE_ISLIKELY(expr)
Compiler hint to optimize for expr evaluating to true.
The Anklang C++ API namespace.
void sha3_224_hash(const void *data, size_t data_length, uint8_t hashvalue[28])
Calculate 224 bit SHA3 digest from data, see also class SHA3_224.
uint64_t uint64
A 64-bit unsigned integer, use PRI*64 in format strings.
void shake256_hash(const void *data, size_t data_length, uint8_t *hashvalues, size_t n)
Calculate SHA3 extendable output digest for 256 bit security strength, see also class SHAKE256.
void sha3_384_hash(const void *data, size_t data_length, uint8_t hashvalue[48])
Calculate 384 bit SHA3 digest from data, see also class SHA3_384.
uint64_t cached_hash_secret
Use hash_secret() for access.
void sha3_256_hash(const void *data, size_t data_length, uint8_t hashvalue[32])
Calculate 256 bit SHA3 digest from data, see also class SHA3_256.
int64_t random_irange(int64_t begin, int64_t end)
Generate uniformly distributed pseudo-random integer within range.
void sha3_512_hash(const void *data, size_t data_length, uint8_t hashvalue[64])
Calculate 512 bit SHA3 digest from data, see also class SHA3_512.
uint64_t random_nonce()
Provide a unique 64 bit identifier that is not 0, see also random_int64().
void shake128_hash(const void *data, size_t data_length, uint8_t *hashvalues, size_t n)
Calculate SHA3 extendable output digest for 128 bit security strength, see also class SHAKE128.
double random_float()
Generate uniformly distributed pseudo-random floating point number.
double random_frange(double begin, double end)
Generate uniformly distributed pseudo-random floating point number within a range.
uint64_t random_int64()
Generate a non-deterministic, uniformly distributed 64 bit pseudo-random number.
void random_secret(uint64_t *secret_var)
Generate a secret non-zero nonce in secret_var, unless it has already been assigned.
Helper to provide memory for placement new AlignedPOD<SIZE> is aligned like max_align_t or like mallo...
size_t hash(size_t seed, const T &v)
SHA3_224 - 224 Bit digest generation.
SHA3_224()
Create context to calculate a 224 bit SHA3 hash digest.
void update(const uint8_t *data, size_t length)
Feed data to be hashed.
void digest(uint8_t hashvalue[28])
Retrieve the resulting hash value.
void reset()
Reset state to feed and retrieve a new hash value.
SHA3_256 - 256 Bit digest generation.
SHA3_256()
Create context to calculate a 256 bit SHA3 hash digest.
void update(const uint8_t *data, size_t length)
Feed data to be hashed.
void digest(uint8_t hashvalue[32])
Retrieve the resulting hash value.
void reset()
Reset state to feed and retrieve a new hash value.
SHA3_384 - 384 Bit digest generation.
void reset()
Reset state to feed and retrieve a new hash value.
SHA3_384()
Create context to calculate a 384 bit SHA3 hash digest.
void update(const uint8_t *data, size_t length)
Feed data to be hashed.
void digest(uint8_t hashvalue[48])
Retrieve the resulting hash value.
SHA3_512 - 512 Bit digest generation.
void digest(uint8_t hashvalue[64])
Retrieve the resulting hash value.
SHA3_512()
Create context to calculate a 512 bit SHA3 hash digest.
void update(const uint8_t *data, size_t length)
Feed data to be hashed.
void reset()
Reset state to feed and retrieve a new hash value.
SHAKE128 - 128 Bit extendable output digest generation.
SHAKE128()
Create context to calculate an unbounded SHAKE128 hash digest.
void update(const uint8_t *data, size_t length)
Feed data to be hashed.
void reset()
Reset state to feed and retrieve a new hash value.
void squeeze_digest(uint8_t *hashvalues, size_t n)
Retrieve an arbitrary number of hash value bytes.
SHAKE256 - 256 Bit extendable output digest generation.
void reset()
Reset state to feed and retrieve a new hash value.
SHAKE256()
Create context to calculate an unbounded SHAKE256 hash digest.
void update(const uint8_t *data, size_t length)
Feed data to be hashed.
void squeeze_digest(uint8_t *hashvalues, size_t n)
Retrieve an arbitrary number of hash value bytes.
Value type used to interface with various property types.