Files
agnostic_orderbook
processor
cancel_order.rsclose_market.rsconsume_events.rscreate_market.rsnew_order.rs
critbit.rsentrypoint.rserror.rsinstruction.rslib.rsorderbook.rsprocessor.rsstate.rsutils.rs
ahash
convert.rsfallback_hash.rslib.rsoperations.rsrandom_state.rsspecialize.rs
aho_corasick
packed
teddy
compile.rsmod.rsruntime.rs
api.rsmod.rspattern.rsrabinkarp.rsvector.rs
ahocorasick.rsautomaton.rsbuffer.rsbyte_frequencies.rsclasses.rsdfa.rserror.rslib.rsnfa.rsprefilter.rsstate_id.rs
arrayref
lib.rs
arrayvec
array.rsarray_string.rschar.rserrors.rslib.rsmaybe_uninit.rs
atty
lib.rs
base64
read
decoder.rsmod.rs
write
encoder.rsmod.rs
chunked_encoder.rsdecode.rsdisplay.rsencode.rslib.rstables.rs
bincode
config
endian.rsint.rslegacy.rslimit.rsmod.rstrailing.rs
de
mod.rsread.rs
ser
mod.rs
byteorder.rserror.rsinternal.rslib.rs
blake3
ffi_avx2.rsffi_avx512.rsffi_sse2.rsffi_sse41.rsguts.rsjoin.rslib.rsplatform.rsportable.rstraits.rs
block_buffer
lib.rs
block_padding
lib.rs
borsh
de
hint.rsmod.rs
ser
helpers.rsmod.rs
lib.rsschema.rsschema_helpers.rs
borsh_derive
lib.rs
borsh_derive_internal
attribute_helpers.rsenum_de.rsenum_ser.rslib.rsstruct_de.rsstruct_ser.rsunion_de.rsunion_ser.rs
borsh_schema_derive_internal
enum_schema.rshelpers.rslib.rsstruct_schema.rs
bs58
alphabet.rsdecode.rsencode.rslib.rs
bv
adapter
bit_concat.rsbit_fill.rsbit_slice_adapter.rsbool_adapter.rslogic.rsmod.rs
bit_vec
impls.rsinner.rsmod.rs
traits
bit_sliceable.rsbits.rsbits_ext.rsbits_mut.rsbits_mut_ext.rsbits_push.rsmod.rs
array_n_impls.rsiter.rslib.rsmacros.rsprims.rsrange_compat.rsslice.rsstorage.rs
bytemuck
contiguous.rslib.rsoffset_of.rspod.rstransparent.rszeroable.rs
byteorder
io.rslib.rs
cfg_if
lib.rs
constant_time_eq
lib.rs
cpufeatures
lib.rsx86.rs
crunchy
lib.rs
crypto_mac
errors.rslib.rs
curve25519_dalek
backend
serial
curve_models
mod.rs
scalar_mul
mod.rspippenger.rsprecomputed_straus.rsstraus.rsvariable_base.rsvartime_double_base.rs
u64
constants.rsfield.rsmod.rsscalar.rs
mod.rs
mod.rs
constants.rsedwards.rsfield.rslib.rsmacros.rsmontgomery.rsprelude.rsristretto.rsscalar.rstraits.rswindow.rs
derivative
ast.rsattr.rsbound.rsclone.rscmp.rsdebug.rsdefault.rshash.rslib.rsmatcher.rspaths.rsutils.rs
dex_v3
processor
cancel_order.rsclose_account.rsclose_market.rsconsume_events.rscreate_market.rsinitialize_account.rsnew_order.rssettle.rssweep_fees.rs
entrypoint.rserror.rsinstruction.rslib.rsprocessor.rsstate.rsutils.rs
digest
digest.rsdyn_digest.rserrors.rsfixed.rslib.rsvariable.rsxof.rs
either
lib.rs
enumflags2
fallible.rsformatting.rslib.rs
enumflags2_derive
lib.rs
env_logger
filter
mod.rsregex.rs
fmt
humantime
extern_impl.rsmod.rs
writer
termcolor
extern_impl.rsmod.rs
atty.rsmod.rs
mod.rs
lib.rs
generic_array
arr.rsfunctional.rshex.rsimpl_serde.rsimpls.rsiter.rslib.rssequence.rs
getrandom
error.rserror_impls.rslib.rsmacos.rsuse_file.rsutil.rsutil_libc.rs
hashbrown
external_trait_impls
mod.rs
raw
bitmask.rsmod.rssse2.rs
lib.rsmacros.rsmap.rsscopeguard.rsset.rs
hex
error.rslib.rs
hmac
lib.rs
hmac_drbg
lib.rs
humantime
date.rsduration.rslib.rswrapper.rs
itertools
adaptors
mod.rsmulti_product.rs
combinations.rscombinations_with_replacement.rsconcat_impl.rscons_tuples_impl.rsdiff.rseither_or_both.rsexactly_one_err.rsformat.rsfree.rsgroup_map.rsgroupbylazy.rsimpl_macros.rsintersperse.rskmerge_impl.rslazy_buffer.rslib.rsmerge_join.rsminmax.rsmultipeek_impl.rspad_tail.rspeeking_take_while.rspermutations.rsprocess_results_impl.rsput_back_n_impl.rsrciter_impl.rsrepeatn.rssize_hint.rssources.rstee.rstuple_impl.rsunique_impl.rswith_position.rszip_eq_impl.rszip_longest.rsziptuple.rs
keccak
lib.rs
lazy_static
core_lazy.rslib.rs
libc
unix
bsd
apple
b64
x86_64
align.rsmod.rs
mod.rs
mod.rs
mod.rs
align.rsmod.rs
fixed_width_ints.rslib.rsmacros.rs
libm
math
acos.rsacosf.rsacosh.rsacoshf.rsasin.rsasinf.rsasinh.rsasinhf.rsatan.rsatan2.rsatan2f.rsatanf.rsatanh.rsatanhf.rscbrt.rscbrtf.rsceil.rsceilf.rscopysign.rscopysignf.rscos.rscosf.rscosh.rscoshf.rserf.rserff.rsexp.rsexp10.rsexp10f.rsexp2.rsexp2f.rsexpf.rsexpm1.rsexpm1f.rsexpo2.rsfabs.rsfabsf.rsfdim.rsfdimf.rsfenv.rsfloor.rsfloorf.rsfma.rsfmaf.rsfmax.rsfmaxf.rsfmin.rsfminf.rsfmod.rsfmodf.rsfrexp.rsfrexpf.rshypot.rshypotf.rsilogb.rsilogbf.rsj0.rsj0f.rsj1.rsj1f.rsjn.rsjnf.rsk_cos.rsk_cosf.rsk_expo2.rsk_expo2f.rsk_sin.rsk_sinf.rsk_tan.rsk_tanf.rsldexp.rsldexpf.rslgamma.rslgamma_r.rslgammaf.rslgammaf_r.rslog.rslog10.rslog10f.rslog1p.rslog1pf.rslog2.rslog2f.rslogf.rsmod.rsmodf.rsmodff.rsnextafter.rsnextafterf.rspow.rspowf.rsrem_pio2.rsrem_pio2_large.rsrem_pio2f.rsremainder.rsremainderf.rsremquo.rsremquof.rsround.rsroundf.rsscalbn.rsscalbnf.rssin.rssincos.rssincosf.rssinf.rssinh.rssinhf.rssqrt.rssqrtf.rstan.rstanf.rstanh.rstanhf.rstgamma.rstgammaf.rstrunc.rstruncf.rs
lib.rs
libsecp256k1
lib.rs
libsecp256k1_core
der.rsecdh.rsecdsa.rsecmult.rserror.rsfield.rsgroup.rslib.rsscalar.rs
log
lib.rsmacros.rs
memchr
memchr
x86
avx.rsmod.rssse2.rs
fallback.rsiter.rsmod.rsnaive.rs
memmem
prefilter
x86
avx.rsmod.rssse.rs
fallback.rsgenericsimd.rsmod.rs
x86
avx.rsmod.rssse.rs
byte_frequencies.rsgenericsimd.rsmod.rsrabinkarp.rsrarebytes.rstwoway.rsutil.rsvector.rs
cow.rslib.rs
memmap2
lib.rsunix.rs
num_derive
lib.rstest.rs
num_enum
lib.rs
num_enum_derive
lib.rs
num_traits
ops
checked.rsinv.rsmod.rsmul_add.rsoverflowing.rssaturating.rswrapping.rs
bounds.rscast.rsfloat.rsidentities.rsint.rslib.rsmacros.rspow.rsreal.rssign.rs
opaque_debug
lib.rs
ppv_lite86
x86_64
mod.rssse2.rs
lib.rssoft.rstypes.rs
proc_macro2
detection.rsfallback.rslib.rsmarker.rsparse.rswrapper.rs
quote
ext.rsformat.rsident_fragment.rslib.rsruntime.rsspanned.rsto_tokens.rs
rand
distributions
weighted
alias_method.rsmod.rs
bernoulli.rsbinomial.rscauchy.rsdirichlet.rsexponential.rsfloat.rsgamma.rsinteger.rsmod.rsnormal.rsother.rspareto.rspoisson.rstriangular.rsuniform.rsunit_circle.rsunit_sphere.rsutils.rsweibull.rsziggurat_tables.rs
rngs
adapter
mod.rsread.rsreseeding.rs
entropy.rsmock.rsmod.rssmall.rsstd.rsthread.rs
seq
index.rsmod.rs
lib.rsprelude.rs
rand_chacha
chacha.rsguts.rslib.rs
rand_core
block.rserror.rsimpls.rsle.rslib.rsos.rs
rand_pcg
lib.rspcg128.rspcg64.rs
regex
literal
imp.rsmod.rs
backtrack.rscompile.rsdfa.rserror.rsexec.rsexpand.rsfind_byte.rsinput.rslib.rspikevm.rspool.rsprog.rsre_builder.rsre_bytes.rsre_set.rsre_trait.rsre_unicode.rssparse.rsutf8.rs
regex_syntax
ast
mod.rsparse.rsprint.rsvisitor.rs
hir
literal
mod.rs
interval.rsmod.rsprint.rstranslate.rsvisitor.rs
unicode_tables
age.rscase_folding_simple.rsgeneral_category.rsgrapheme_cluster_break.rsmod.rsperl_word.rsproperty_bool.rsproperty_names.rsproperty_values.rsscript.rsscript_extension.rssentence_break.rsword_break.rs
either.rserror.rslib.rsparser.rsunicode.rsutf8.rs
rustversion
attr.rsbound.rsconstfn.rsdate.rserror.rsexpr.rsiter.rslib.rsrelease.rstime.rstoken.rsversion.rs
serde
de
ignored_any.rsimpls.rsmod.rsseed.rsutf8.rsvalue.rs
private
de.rsdoc.rsmod.rsser.rssize_hint.rs
ser
fmt.rsimpls.rsimpossible.rsmod.rs
integer128.rslib.rsmacros.rs
serde_bytes
bytebuf.rsbytes.rsde.rslib.rsser.rs
serde_derive
internals
ast.rsattr.rscase.rscheck.rsctxt.rsmod.rsreceiver.rsrespan.rssymbol.rs
bound.rsde.rsdummy.rsfragment.rslib.rspretend.rsser.rstry.rs
sha2
sha256
soft.rsx86.rs
sha512
soft.rsx86.rs
consts.rslib.rssha256.rssha512.rs
sha3
lib.rsmacros.rspaddings.rsreader.rsstate.rs
solana_frozen_abi
lib.rs
solana_frozen_abi_macro
lib.rs
solana_logger
lib.rs
solana_program
nonce
state
current.rsmod.rs
mod.rs
stake
config.rsinstruction.rsmod.rsstate.rs
sysvar
clock.rsepoch_schedule.rsfees.rsinstructions.rsmod.rsrecent_blockhashes.rsrent.rsrewards.rsslot_hashes.rsslot_history.rsstake_history.rs
account_info.rsborsh.rsbpf_loader.rsbpf_loader_deprecated.rsbpf_loader_upgradeable.rsclock.rsdecode_error.rsentrypoint.rsentrypoint_deprecated.rsepoch_schedule.rsfeature.rsfee_calculator.rshash.rsincinerator.rsinstruction.rskeccak.rslamports.rslib.rsloader_instruction.rsloader_upgradeable_instruction.rslog.rsmessage.rsnative_token.rsprogram.rsprogram_error.rsprogram_memory.rsprogram_option.rsprogram_pack.rsprogram_stubs.rspubkey.rsrent.rssanitize.rssecp256k1_program.rssecp256k1_recover.rsserialize_utils.rsshort_vec.rsslot_hashes.rsslot_history.rsstake_history.rssystem_instruction.rssystem_program.rs
solana_sdk_macro
lib.rs
spin
lib.rsmutex.rsonce.rsrw_lock.rs
spl_token
error.rsinstruction.rslib.rsnative_mint.rsprocessor.rsstate.rs
subtle
lib.rs
syn
gen
clone.rsdebug.rseq.rsfold.rsgen_helper.rshash.rsvisit.rsvisit_mut.rs
attr.rsawait.rsbigint.rsbuffer.rscustom_keyword.rscustom_punctuation.rsdata.rsderive.rsdiscouraged.rserror.rsexport.rsexpr.rsext.rsfile.rsgenerics.rsgroup.rsident.rsitem.rslib.rslifetime.rslit.rslookahead.rsmac.rsmacros.rsop.rsparse.rsparse_macro_input.rsparse_quote.rspat.rspath.rsprint.rspunctuated.rsreserved.rssealed.rsspan.rsspanned.rsstmt.rsthread.rstoken.rstt.rsty.rsverbatim.rswhitespace.rs
synstructure
lib.rsmacros.rs
termcolor
lib.rs
thiserror
aserror.rsdisplay.rslib.rs
thiserror_impl
ast.rsattr.rsexpand.rsfmt.rsgenerics.rslib.rsprop.rsvalid.rs
typenum
array.rsbit.rsint.rslib.rsmarker_traits.rsoperator_aliases.rsprivate.rstype_operators.rsuint.rs
unicode_xid
lib.rstables.rs
zeroize
lib.rsx86.rs
zeroize_derive
lib.rs
  1
  2
  3
  4
  5
  6
  7
  8
  9
 10
 11
 12
 13
 14
 15
 16
 17
 18
 19
 20
 21
 22
 23
 24
 25
 26
 27
 28
 29
 30
 31
 32
 33
 34
 35
 36
 37
 38
 39
 40
 41
 42
 43
 44
 45
 46
 47
 48
 49
 50
 51
 52
 53
 54
 55
 56
 57
 58
 59
 60
 61
 62
 63
 64
 65
 66
 67
 68
 69
 70
 71
 72
 73
 74
 75
 76
 77
 78
 79
 80
 81
 82
 83
 84
 85
 86
 87
 88
 89
 90
 91
 92
 93
 94
 95
 96
 97
 98
 99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137

// Copyright 2018 Developers of the Rand project.
//
// Licensed under the Apache License, Version 2.0 <LICENSE-APACHE or
// https://www.apache.org/licenses/LICENSE-2.0> or the MIT license
// <LICENSE-MIT or https://opensource.org/licenses/MIT>, at your
// option. This file may not be copied, modified, or distributed
// except according to those terms.

//! Implementations that just need to read from a file
use crate::util::LazyUsize;
use crate::util_libc::{open_readonly, sys_fill_exact};
use crate::Error;
use core::cell::UnsafeCell;
use core::sync::atomic::{AtomicUsize, Ordering::Relaxed};

#[cfg(target_os = "redox")]
const FILE_PATH: &str = "rand:\0";
#[cfg(any(
    target_os = "dragonfly",
    target_os = "emscripten",
    target_os = "haiku",
    target_os = "macos",
    target_os = "solaris",
    target_os = "illumos"
))]
const FILE_PATH: &str = "/dev/random\0";
#[cfg(any(target_os = "android", target_os = "linux"))]
const FILE_PATH: &str = "/dev/urandom\0";

pub fn getrandom_inner(dest: &mut [u8]) -> Result<(), Error> {
    let fd = get_rng_fd()?;
    let read = |buf: &mut [u8]| unsafe { libc::read(fd, buf.as_mut_ptr() as *mut _, buf.len()) };

    if cfg!(target_os = "emscripten") {
        // `Crypto.getRandomValues` documents `dest` should be at most 65536 bytes.
        for chunk in dest.chunks_mut(65536) {
            sys_fill_exact(chunk, read)?;
        }
    } else {
        sys_fill_exact(dest, read)?;
    }
    Ok(())
}

// Returns the file descriptor for the device file used to retrieve random
// bytes. The file will be opened exactly once. All successful calls will
// return the same file descriptor. This file descriptor is never closed.
fn get_rng_fd() -> Result<libc::c_int, Error> {
    static FD: AtomicUsize = AtomicUsize::new(LazyUsize::UNINIT);
    fn get_fd() -> Option<libc::c_int> {
        match FD.load(Relaxed) {
            LazyUsize::UNINIT => None,
            val => Some(val as libc::c_int),
        }
    }

    // Use double-checked locking to avoid acquiring the lock if possible.
    if let Some(fd) = get_fd() {
        return Ok(fd);
    }

    // SAFETY: We use the mutex only in this method, and we always unlock it
    // before returning, making sure we don't violate the pthread_mutex_t API.
    static MUTEX: Mutex = Mutex::new();
    unsafe { MUTEX.lock() };
    let _guard = DropGuard(|| unsafe { MUTEX.unlock() });

    if let Some(fd) = get_fd() {
        return Ok(fd);
    }

    // On Linux, /dev/urandom might return insecure values.
    #[cfg(any(target_os = "android", target_os = "linux"))]
    wait_until_rng_ready()?;

    let fd = unsafe { open_readonly(FILE_PATH)? };
    // The fd always fits in a usize without conflicting with UNINIT.
    debug_assert!(fd >= 0 && (fd as usize) < LazyUsize::UNINIT);
    FD.store(fd as usize, Relaxed);

    Ok(fd)
}

// Succeeds once /dev/urandom is safe to read from
#[cfg(any(target_os = "android", target_os = "linux"))]
fn wait_until_rng_ready() -> Result<(), Error> {
    // Poll /dev/random to make sure it is ok to read from /dev/urandom.
    let fd = unsafe { open_readonly("/dev/random\0")? };
    let mut pfd = libc::pollfd {
        fd,
        events: libc::POLLIN,
        revents: 0,
    };
    let _guard = DropGuard(|| unsafe {
        libc::close(fd);
    });

    loop {
        // A negative timeout means an infinite timeout.
        let res = unsafe { libc::poll(&mut pfd, 1, -1) };
        if res >= 0 {
            assert_eq!(res, 1); // We only used one fd, and cannot timeout.
            return Ok(());
        }
        let err = crate::util_libc::last_os_error();
        match err.raw_os_error() {
            Some(libc::EINTR) | Some(libc::EAGAIN) => continue,
            _ => return Err(err),
        }
    }
}

struct Mutex(UnsafeCell<libc::pthread_mutex_t>);

impl Mutex {
    const fn new() -> Self {
        Self(UnsafeCell::new(libc::PTHREAD_MUTEX_INITIALIZER))
    }
    unsafe fn lock(&self) {
        let r = libc::pthread_mutex_lock(self.0.get());
        debug_assert_eq!(r, 0);
    }
    unsafe fn unlock(&self) {
        let r = libc::pthread_mutex_unlock(self.0.get());
        debug_assert_eq!(r, 0);
    }
}

unsafe impl Sync for Mutex {}

struct DropGuard<F: FnMut()>(F);

impl<F: FnMut()> Drop for DropGuard<F> {
    fn drop(&mut self) {
        self.0()
    }
}