Module sui::random
This module provides functionality for generating secure randomness.
- Struct Random
- Struct RandomInner
- Struct RandomGenerator
- Constants
- Function create
- Function load_inner_mut
- Function load_inner
- Function update_randomness_state
- Function new_generator
- Function derive_next_block
- Function generate_bytes
- Macro function uint_from_bytes
- Function generate_u256
- Function generate_u128
- Function generate_u64
- Function generate_u32
- Function generate_u16
- Function generate_u8
- Function generate_bool
- Macro function uint_in_range
- Function generate_u128_in_range
- Function generate_u64_in_range
- Function generate_u32_in_range
- Function generate_u16_in_range
- Function generate_u8_in_range
- Function shuffle
use std::ascii;
use std::bcs;
use std::option;
use std::string;
use std::vector;
use sui::address;
use sui::dynamic_field;
use sui::hex;
use sui::hmac;
use sui::object;
use sui::party;
use sui::transfer;
use sui::tx_context;
use sui::vec_map;
use sui::versioned;
Struct Random
β
Singleton shared object which stores the global randomness state. The actual state is stored in a versioned inner field.
public struct Random has key
Fields
-
id: sui::object::UID
-
inner: sui::versioned::Versioned
Struct RandomInner
β
public struct RandomInner has store
Fields
-
version: u64
-
epoch: u64
-
randomness_round: u64
-
random_bytes: vector<u8>
Struct RandomGenerator
β
Unique randomness generator, derived from the global randomness.
public struct RandomGenerator has drop
Fields
-
seed: vector<u8>
-
counter: u16
-
buffer: vector<u8>
Constantsβ
const ENotSystemAddress: u64 = 0;
const EWrongInnerVersion: u64 = 1;
const EInvalidRandomnessUpdate: u64 = 2;
const EInvalidRange: u64 = 3;
const EInvalidLength: u64 = 4;
const CURRENT_VERSION: u64 = 1;
const RAND_OUTPUT_LEN: u16 = 32;
const U16_MAX: u64 = 65535;
Function create
β
Create and share the Random object. This function is called exactly once, when the Random object is first created. Can only be called by genesis or change_epoch transactions.
fun create(ctx: &mut sui::tx_context::TxContext)
Implementation
fun create(ctx: &mut TxContext) {
assert!(ctx.sender() == @0x0, ENotSystemAddress);
let version = CURRENT_VERSION;
let inner = RandomInner {
version,
epoch: ctx.epoch(),
randomness_round: 0,
random_bytes: vector[],
};
let self = Random {
id: object::randomness_state(),
inner: versioned::create(version, inner, ctx),
};
transfer::share_object(self);
}
Function load_inner_mut
β
fun load_inner_mut(self: &mut sui::random::Random): &mut sui::random::RandomInner
Implementation
fun load_inner_mut(self: &mut Random): &mut RandomInner {
let version = versioned::version(&self.inner);
// Replace this with a lazy update function when we add a new version of the inner object.
assert!(version == CURRENT_VERSION, EWrongInnerVersion);
let inner: &mut RandomInner = self.inner.load_value_mut();
assert!(inner.version == version, EWrongInnerVersion);
inner
}
Function load_inner
β
fun load_inner(self: &sui::random::Random): &sui::random::RandomInner
Implementation
fun load_inner(self: &Random): &RandomInner {
let version = self.inner.version();
// Replace this with a lazy update function when we add a new version of the inner object.
assert!(version == CURRENT_VERSION, EWrongInnerVersion);
let inner: &RandomInner = self.inner.load_value();
assert!(inner.version == version, EWrongInnerVersion);
inner
}
Function update_randomness_state
β
Record new randomness. Called when executing the RandomnessStateUpdate system transaction.
fun update_randomness_state(self: &mut sui::random::Random, new_round: u64, new_bytes: vector<u8>, ctx: &sui::tx_context::TxContext)
Implementation
fun update_randomness_state(
self: &mut Random,
new_round: u64,
new_bytes: vector<u8>,
ctx: &TxContext,
) {
// Validator will make a special system call with sender set as 0x0.
assert!(ctx.sender() == @0x0, ENotSystemAddress);
// Randomness should only be incremented.
let epoch = ctx.epoch();
let inner = self.load_inner_mut();
if (inner.randomness_round == 0 && inner.epoch == 0 && inner.random_bytes.is_empty()) {
// First update should be for round zero.
assert!(new_round == 0, EInvalidRandomnessUpdate);
} else {
// Subsequent updates should either increase epoch or increment randomness_round.
// Note that epoch may increase by more than 1 if an epoch is completed without
// randomness ever being generated in that epoch.
assert!(
(epoch > inner.epoch && new_round == 0) ||
(new_round == inner.randomness_round + 1),
EInvalidRandomnessUpdate,
);
};
inner.epoch = ctx.epoch();
inner.randomness_round = new_round;
inner.random_bytes = new_bytes;
}
Function new_generator
β
Create a generator. Can be used to derive up to MAX_U16 * 32 random bytes.
Using randomness can be error-prone if you don't observe the subtleties in its correct use, for example, randomness dependent code might be exploitable to attacks that carefully set the gas budget in a way that breaks security. For more information, see: https://docs.sui.io/guides/developer/advanced/randomness-onchain
public fun new_generator(r: &sui::random::Random, ctx: &mut sui::tx_context::TxContext): sui::random::RandomGenerator
Implementation
public fun new_generator(r: &Random, ctx: &mut TxContext): RandomGenerator {
let inner = r.load_inner();
let seed = hmac_sha3_256(
&inner.random_bytes,
&ctx.fresh_object_address().to_bytes(),
);
RandomGenerator { seed, counter: 0, buffer: vector[] }
}
Function derive_next_block
β
Get the next block of 32 random bytes.
fun derive_next_block(g: &mut sui::random::RandomGenerator): vector<u8>
Implementation
fun derive_next_block(g: &mut RandomGenerator): vector<u8> {
g.counter = g.counter + 1;
hmac_sha3_256(&g.seed, &bcs::to_bytes(&g.counter))
}
Function generate_bytes
β
Generate n random bytes.
public fun generate_bytes(g: &mut sui::random::RandomGenerator, num_of_bytes: u16): vector<u8>
Implementation
public fun generate_bytes(g: &mut RandomGenerator, num_of_bytes: u16): vector<u8> {
let mut result = vector[];
// Append RAND_OUTPUT_LEN size buffers directly without going through the generator's buffer.
let num_of_blocks = num_of_bytes / RAND_OUTPUT_LEN;
num_of_blocks.do!(|_| result.append(g.derive_next_block()));
// Fill the generator's buffer if needed.
let num_of_bytes = num_of_bytes as u64;
let remaining = num_of_bytes - result.length();
if (g.buffer.length() < remaining) {
let next_block = g.derive_next_block();
g.buffer.append(next_block);
};
// Take remaining bytes from the generator's buffer.
remaining.do!(|_| result.push_back(g.buffer.pop_back()));
result
}
Macro function uint_from_bytes
β
macro fun uint_from_bytes<$T: drop>($g: &mut sui::random::RandomGenerator, $num_of_bytes: u8): $T
Implementation
macro fun uint_from_bytes<$T: drop>($g: &mut RandomGenerator, $num_of_bytes: u8): $T {
let g = $g;
let num_of_bytes = $num_of_bytes;
if (g.buffer.length() < num_of_bytes as u64) {
let next_block = g.derive_next_block();
g.buffer.append(next_block);
};
// TODO: why regression test fails if we use $T instead of u256
let mut result: u256 = 0;
num_of_bytes.do!(|_| {
let byte = g.buffer.pop_back() as u256;
result = (result << 8) + byte;
});
result as $T
}
Function generate_u256
β
Generate a u256.
public fun generate_u256(g: &mut sui::random::RandomGenerator): u256
Implementation
public fun generate_u256(g: &mut RandomGenerator): u256 {
uint_from_bytes!(g, 32)
}
Function generate_u128
β
Generate a u128.
public fun generate_u128(g: &mut sui::random::RandomGenerator): u128
Implementation
public fun generate_u128(g: &mut RandomGenerator): u128 {
uint_from_bytes!(g, 16)
}
Function generate_u64
β
Generate a u64.
public fun generate_u64(g: &mut sui::random::RandomGenerator): u64
Implementation
public fun generate_u64(g: &mut RandomGenerator): u64 {
uint_from_bytes!(g, 8)
}
Function generate_u32
β
Generate a u32.
public fun generate_u32(g: &mut sui::random::RandomGenerator): u32
Implementation
public fun generate_u32(g: &mut RandomGenerator): u32 {
uint_from_bytes!(g, 4)
}
Function generate_u16
β
Generate a u16.
public fun generate_u16(g: &mut sui::random::RandomGenerator): u16
Implementation
public fun generate_u16(g: &mut RandomGenerator): u16 {
uint_from_bytes!(g, 2)
}
Function generate_u8
β
Generate a u8.
public fun generate_u8(g: &mut sui::random::RandomGenerator): u8
Implementation
public fun generate_u8(g: &mut RandomGenerator): u8 {
uint_from_bytes!(g, 1)
}
Function generate_bool
β
Generate a boolean.
public fun generate_bool(g: &mut sui::random::RandomGenerator): bool
Implementation
public fun generate_bool(g: &mut RandomGenerator): bool {
(uint_from_bytes!(g, 1) & 1) == 1
}
Macro function uint_in_range
β
Helper macro to generate a random uint in [min, max] using a random number with num_of_bytes bytes. Assumes that the caller verified the inputs, and uses num_of_bytes to control the bias (e.g., 8 bytes larger than the actual type used by the caller function to limit the bias by 2^{-64}).
macro fun uint_in_range<$T: drop>($g: &mut sui::random::RandomGenerator, $min: $T, $max: $T, $num_of_bytes: u8): $T
Implementation
macro fun uint_in_range<$T: drop>(
$g: &mut RandomGenerator,
$min: $T,
$max: $T,
$num_of_bytes: u8,
): $T {
let min = $min;
let max = $max;
assert!(min <= max, EInvalidRange);
if (min == max) return min;
// Pick a random number in [0, max - min] by generating a random number that is larger than max-min, and taking
// the modulo of the random number by the range size. Then add the min to the result to get a number in
// [min, max].
let range_size = (max - min) as u256 + 1;
let rand = uint_from_bytes!($g, $num_of_bytes);
min + (rand % range_size as $T)
}
Function generate_u128_in_range
β
Generate a random u128 in [min, max] (with a bias of 2^{-64}).
public fun generate_u128_in_range(g: &mut sui::random::RandomGenerator, min: u128, max: u128): u128
Implementation
public fun generate_u128_in_range(g: &mut RandomGenerator, min: u128, max: u128): u128 {
uint_in_range!(g, min, max, 24)
}
Function generate_u64_in_range
β
public fun generate_u64_in_range(g: &mut sui::random::RandomGenerator, min: u64, max: u64): u64
Implementation
public fun generate_u64_in_range(g: &mut RandomGenerator, min: u64, max: u64): u64 {
uint_in_range!(g, min, max, 16)
}
Function generate_u32_in_range
β
Generate a random u32 in [min, max] (with a bias of 2^{-64}).
public fun generate_u32_in_range(g: &mut sui::random::RandomGenerator, min: u32, max: u32): u32
Implementation
public fun generate_u32_in_range(g: &mut RandomGenerator, min: u32, max: u32): u32 {
uint_in_range!(g, min, max, 12)
}
Function generate_u16_in_range
β
Generate a random u16 in [min, max] (with a bias of 2^{-64}).
public fun generate_u16_in_range(g: &mut sui::random::RandomGenerator, min: u16, max: u16): u16
Implementation
public fun generate_u16_in_range(g: &mut RandomGenerator, min: u16, max: u16): u16 {
uint_in_range!(g, min, max, 10)
}
Function generate_u8_in_range
β
Generate a random u8 in [min, max] (with a bias of 2^{-64}).
public fun generate_u8_in_range(g: &mut sui::random::RandomGenerator, min: u8, max: u8): u8
Implementation
public fun generate_u8_in_range(g: &mut RandomGenerator, min: u8, max: u8): u8 {
uint_in_range!(g, min, max, 9)
}
Function shuffle
β
Shuffle a vector using the random generator (FisherβYates/Knuth shuffle).
public fun shuffle<T>(g: &mut sui::random::RandomGenerator, v: &mut vector<T>)
Implementation
public fun shuffle<T>(g: &mut RandomGenerator, v: &mut vector<T>) {
let n = v.length();
if (n == 0) return;
assert!(n <= U16_MAX, EInvalidLength);
let n = n as u16;
let end = n - 1;
end.do!(|i| {
let j = g.generate_u16_in_range(i, end);
v.swap(i as u64, j as u64);
});
}