Skip to content

Determinism option for block-chain implementation usages with getrandom dependencies #2

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
DrJesseGlass wants to merge 9 commits into
base: master
Choose a base branch
from
Open

Determinism option for block-chain implementation usages with getrandom dependencies #2

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
9 commits
Select commit Hold shift + click to select a range
ccabc09
ic backend
jeshli Oct 30, 2025
3e643d1
determinisitc stub
jeshli Oct 30, 2025
d124e30
Ignore .idea directory
jeshli Nov 4, 2025
78208c9
use subnet time to seed PRNG
jeshli Nov 13, 2025
21e1738
Merge branch 'rust-random:master' into determinism
DrJesseGlass Nov 13, 2025
e43e786
ic-cdk only on ic, not all wasm32; improve randomness entropy
jeshli Dec 4, 2025
3e6e117
Merge branch 'master' into determinism
jeshli Dec 4, 2025
64cf362
cargo fmt
jeshli Dec 4, 2025
3eb69cb
ic-cdk version 19
jeshli Dec 4, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
1 change: 1 addition & 0 deletions .gitignore
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,3 +2,4 @@
**/*.rs.bk
nopanic_check/Cargo.lock
nopanic_check/target/
.idea/
5 changes: 4 additions & 1 deletion Cargo.toml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -73,6 +73,9 @@ libc = { version = "0.2.154", default-features = false }
[target.'cfg(all(target_arch = "wasm32", target_os = "wasi", target_env = "p2"))'.dependencies]
wasip2 = { version = "1", default-features = false }

[target.'cfg(all(target_arch = "wasm32", target_os = "unknown", getrandom_backend = "ic"))'.dependencies]
ic-cdk = { version = "0.19.0", default-features = false }

# wasm_js
[target.'cfg(all(target_arch = "wasm32", any(target_os = "unknown", target_os = "none")))'.dependencies]
wasm-bindgen = { version = "0.2.98", default-features = false, optional = true }
Expand All @@ -84,7 +87,7 @@ wasm-bindgen-test = "0.3"
[lints.rust.unexpected_cfgs]
level = "warn"
check-cfg = [
'cfg(getrandom_backend, values("custom", "efi_rng", "rdrand", "rndr", "linux_getrandom", "linux_raw", "wasm_js", "windows_legacy", "unsupported"))',
'cfg(getrandom_backend, values("custom", "efi_rng", "rdrand", "rndr", "linux_getrandom", "linux_raw", "wasm_js", "windows_legacy", "unsupported", "ic"))',
'cfg(getrandom_msan)',
'cfg(getrandom_test_linux_fallback)',
'cfg(getrandom_test_linux_without_fallback)',
Expand Down
3 changes: 3 additions & 0 deletions src/backends.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -11,6 +11,9 @@ cfg_if! {
if #[cfg(getrandom_backend = "custom")] {
mod custom;
pub use custom::*;
} else if #[cfg(getrandom_backend = "ic")] {
mod internet_computer;
pub use internet_computer::*;
} else if #[cfg(getrandom_backend = "linux_getrandom")] {
mod getrandom;
mod sanitizer;
Expand Down
67 changes: 67 additions & 0 deletions src/backends/internet_computer.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,67 @@
//! Backend for Internet Computer (IC) WASM canisters
//!
//! # ⚠️ WARNING: NOT CRYPTOGRAPHICALLY SECURE
//!
//! This backend provides **deterministic pseudo-random bytes** seeded from
//! canister execution state. It exists solely to satisfy dependencies that
//! require `getrandom` for non-security purposes (e.g., ML inference,
//! hash table initialization).
//!
//! **DO NOT USE** for key generation, nonces, tokens, or any security-sensitive purpose.
//!
//! IC's `raw_rand()` is async-only and cannot be called from synchronous `getrandom`.

use crate::Error;
use core::mem::MaybeUninit;

#[cfg(all(target_arch = "wasm32", target_os = "unknown"))]
use ic_cdk::api::{instruction_counter, time};

#[inline]
fn splitmix64_next(x: &mut u64) -> u64 {
*x = x.wrapping_add(0x9E3779B97F4A7C15);
let mut z = *x;
z = (z ^ (z >> 30)).wrapping_mul(0xBF58476D1CE4E5B9);
z = (z ^ (z >> 27)).wrapping_mul(0x94D049BB133111EB);
z ^ (z >> 31)
}

pub fn fill_inner(dest: &mut [MaybeUninit<u8>]) -> Result<(), Error> {
let len = dest.len();
if len == 0 {
return Ok(());
}

#[cfg(all(target_arch = "wasm32", target_os = "unknown"))]
let mut state = time() ^ instruction_counter() ^ (len as u64).wrapping_mul(0x9E3779B97F4A7C15);

#[cfg(not(all(target_arch = "wasm32", target_os = "unknown")))]
let mut state = (len as u64).wrapping_mul(0x9E3779B97F4A7C15);

let mut i = 0;
while i < len {
let word = splitmix64_next(&mut state).to_le_bytes();
let n = core::cmp::min(8, len - i);
for j in 0..n {
dest[i + j].write(word[j]);
}
i += n;
}
Ok(())
}

pub fn inner_u32() -> Result<u32, Error> {
let mut buf = [MaybeUninit::<u8>::uninit(); 4];
fill_inner(&mut buf)?;
Ok(u32::from_ne_bytes(core::array::from_fn(|i| unsafe {
buf[i].assume_init()
})))
}

pub fn inner_u64() -> Result<u64, Error> {
let mut buf = [MaybeUninit::<u8>::uninit(); 8];
fill_inner(&mut buf)?;
Ok(u64::from_ne_bytes(core::array::from_fn(|i| unsafe {
buf[i].assume_init()
})))
}