packageCrypt::URandom;usewarnings;usestrict;useCarp();useExporter();*import= \&Exporter::import;our@EXPORT_OK=qw(urandomurandom_ubgetrandom);our%EXPORT_TAGS= ('all'=> \@EXPORT_OK, );our@CARP_NOT= ('Crypt::URandom');BEGIN {our$VERSION='0.54';eval{XSLoader::load( __PACKAGE__,$VERSION);} ordo{};}## no critic (ProhibitConstantPragma)# using constant for the speed benefit of constant-folding of valuesmy$path='/dev/urandom';if( OS_FREEBSD() ) {$path='/dev/random';# FreeBSD's /dev/random is non-blocking}$path;};my$result= 0;eval{my$correct_length= 2;$result= getrandom($correct_length);} ordo{$result=undef;};$result;};## use criticmy$_initialised;my$_context;my$_cryptgenrandom;my$_rtlgenrand;my$_urandom_handle;sub_init {if( !( (defined$_initialised) && ($_initialised==$PROCESS_ID) ) ) {if( OS_WIN32() ) {my($major,$minor) = ( Win32::GetOSVersion() )[ 1, 2 ];my$ntorlower= ($major< W2K_MAJOR_VERSION() ) ? 1 : 0;my$w2k=($major== W2K_MAJOR_VERSION()and$minor== W2K_MINOR_VERSION() )? 1: 0;if($ntorlower) {Carp::croak('No secure alternative for random number generation for Win32 versions older than W2K');}elsif($w2k) {my$crypt_acquire_context_a=Win32::API->new('advapi32','CryptAcquireContextA','PPPNN','I');if( !defined$crypt_acquire_context_a) {Carp::croak("Could not import CryptAcquireContext: $EXTENDED_OS_ERROR");}my$context=chr(0) x Win32::API::Type->sizeof('PULONG');my$result=$crypt_acquire_context_a->Call($context, 0, 0,PROV_RSA_FULL(), CRYPT_SILENT() | VERIFY_CONTEXT() );my$pack_type= Win32::API::Type::packing('PULONG');$context=unpack$pack_type,$context;if( !$result) {Carp::croak("CryptAcquireContext failed: $EXTENDED_OS_ERROR");}my$crypt_gen_random=Win32::API->new('advapi32','CryptGenRandom','NNP','I');if( !defined$crypt_gen_random) {Carp::croak("Could not import CryptGenRandom: $EXTENDED_OS_ERROR");}$_context=$context;$_cryptgenrandom=$crypt_gen_random;}else{my$rtlgenrand=Win32::API->new('advapi32',<<'_RTLGENRANDOM_PROTO_');INT SystemFunction036(PVOID RandomBuffer,ULONG RandomBufferLength)_RTLGENRANDOM_PROTO_if( !defined$rtlgenrand) {Carp::croak("Could not import SystemFunction036: $EXTENDED_OS_ERROR");}$_rtlgenrand=$rtlgenrand;}}else{$_urandom_handle= FileHandle->new( PATH(), Fcntl::O_RDONLY() )or Carp::croak(q[Failed to open ]. PATH() .qq[ for reading:$OS_ERROR]);binmode$_urandom_handle;}$_initialised=$PROCESS_ID;}return;}suburandom_ub {my($length) =@_;return_urandom('sysread',$length);}suburandom {my($length) =@_;return_urandom('read',$length);}sub_urandom {my($type,$length) =@_;my$length_ok;if(defined$length) {if($length=~ /^\d+$/xms ) {$length_ok= 1;}}if( !$length_ok) {Carp::croak('The length argument must be supplied and must be an integer');}if( !GETRANDOM_AVAILABLE() ) {_init();}if( OS_WIN32() ) {my$urandom=chr(0) x$length;if($_cryptgenrandom) {my$result=$_cryptgenrandom->Call($_context,$length,$urandom);if( !$result) {Carp::croak("CryptGenRandom failed: $EXTENDED_OS_ERROR");}}elsif($_rtlgenrand) {my$result=$_rtlgenrand->Call($urandom,$length);if( !$result) {Carp::croak("RtlGenRand failed: $EXTENDED_OS_ERROR");}}return$urandom;}elsif( GETRANDOM_AVAILABLE() ) {returngetrandom($length);}else{return_read_urandom_fs($type,$length);}return;}sub_read_urandom_fs {my($type,$length) =@_;my$original_length=$length;my$urandom;BUFFER_FILLED: {my$result;if(defined$urandom) {$length=$original_length- (length$urandom);$result=$_urandom_handle->$type(my$buffer,$length);if(defined$buffer) {$urandom.=$buffer;}}else{$result=$_urandom_handle->$type(my$buffer,$length);if(defined$buffer) {$urandom.=$buffer;}}if( (defined$urandom)&& (length$urandom==$original_length) ){}elsif(($result== SYSTEM_CALL_FAILED() )&& ($OS_ERROR== POSIX::EINTR() ) ){redoBUFFER_FILLED;}elsif($result!= SYSTEM_CALL_FAILED() ) {redoBUFFER_FILLED;}else{my$error=$EXTENDED_OS_ERROR;$_urandom_handle=undef;$_initialised=undef;Carp::croak(q[Failed to read from ]. PATH() .qq[:$error]);}}return$urandom;}1;# Magic true value required at end of module__END__=head1 NAMECrypt::URandom - Provide non blocking randomness=head1 VERSIONThis document describes Crypt::URandom version 0.54=head1 SYNOPSISuse Crypt::URandom();my $random_string_50_bytes_long = Crypt::URandom::urandom(50);ORuse Crypt::URandom qw( urandom );my $random_string_50_bytes_long = urandom(50);=head1 DESCRIPTIONThis Module is intended to providean interface to the strongest available source of non-blockingrandomness on the current platform. Platforms currently supported areanything supporting L<getrandom(2)>, /dev/urandom and versions of Windows greaterthan or equal to Windows 2000.=head1 SUBROUTINES/METHODS=over=item C<urandom>=for stopwords cryptographic Win32 initializeThis function accepts an integer and returns a string of the same sizefilled with random data. It will throw an exception if the requested amount ofrandom data is not returned. The first call will initialize the nativecryptographic libraries (if necessary) and load all the required Perl libraries.This call is a buffered read on non Win32 platforms that do not support L<getrandom(2)>or equivalent.=item C<urandom_ub>=for stopwords cryptographic Win32 initialize unbuffered sysreadThis function accepts an integer and returns a string of the same sizefilled with random data. It will throw an exception if the requested amount ofrandom data is not returned. The first call will initialize the nativecryptographic libraries (if necessary) and load all the required Perl libraries.This call is a unbuffered sysread on non Win32 platforms that do not supportL<getrandom(2)> or equivalent.=item C<getrandom>This function accepts an integer and returns a string of the same sizefilled with random data on platforms that implement L<getrandom(2)>.It will throw an exception if the requested amount of random data is not returned.This is NOT portable across all operating systems, but is made available ifhigh-speed generation of random numbers is required.=back=head1 DIAGNOSTICS=over=item C<No secure alternative for random number generation for Win32 versions older than W2K>The module cannot run on versions of Windows earlier than Windows 2000 as there is nocryptographic functions provided by the operating system.=item C<Could not import CryptAcquireContext>=for stopwords CryptAcquireContextA advapi32The module was unable to load the CryptAcquireContextA function from theadvapi32 dynamic library. The advapi32 library cannot probably be loaded.=item C<CryptAcquireContext failed>=for stopwords advapi32The module was unable to call the CryptAcquireContextA function from theadvapi32 dynamic library.=item C<Could not import CryptGenRandom>=for stopwords advapi32 CryptGenRandomThe module was unable to load the CryptGenRandom function from theadvapi32 dynamic library.=item C<Could not import SystemFunction036>=for stopwords SystemFunction036The module was unable to load the SystemFunction036 function from theadvapi32 dynamic library.=item C<The length argument must be supplied and must be an integer>The get method must be called with an integer argument to describe how manyrandom bytes are required.=item C<CryptGenRandom failed>The Windows 2000 CryptGenRandom method call failed to generate the requiredamount of randomness=item C<RtlGenRand failed>=for stopwords RtlGenRandThe post Windows 2000 RtlGenRand method call failed to generate the requiredamount of randomness=item C<Only read n bytes from path>The /dev/urandom device did not return the desired amount of random bytes=item C<Failed to read from path>The /dev/urandom device returned an error when being read from=item C<Failed to open path>The /dev/urandom device returned an error when being opened=back=head1 CONFIGURATION AND ENVIRONMENTCrypt::URandom requires no configuration files or environment variables.If the environment variable CRYPT_URANDOM_BUILD_DEBUG is specified whenrunning C<perl Makefile.PL> or C<make test> AND L<getrandom(2)> or it'sequivalents cannot be detected, extra debug will be shown to show thefailures to detect these functions.=head1 DEPENDENCIES=over=for stopwords perlIf the platform is Win32, the Win32::API module will be required. Otherwiseno other modules other than those provided by perl will be required=back=head1 INCOMPATIBILITIESNone reported.=head1 BUGS AND LIMITATIONSTo report a bug, or view the current list of bugs, please visit L<https://github.com/david-dick/crypt-urandom/issues>=head1 AUTHORDavid Dick C<< <ddick@cpan.org> >>=for stopwords ACKNOWLEDGEMENTS=head1 ACKNOWLEDGEMENTS=for stopwords CryptoAPI Kanat-AlexanderThe Win32::API code for interacting with Microsoft's L<CryptoAPI|https://en.wikipedia.org/wiki/Microsoft_CryptoAPI> was copied with extremegratitude from L<Crypt::Random::Source::Strong::Win32|Crypt::Random::Source::Strong::Win32> by L<Max Kanat-Alexander|https://metacpan.org/author/MKANAT>=head1 LICENSE AND COPYRIGHTCopyright (c) 2025, David Dick C<< <ddick@cpan.org> >>. All rights reserved.This module is free software; you can redistribute it and/ormodify it under the same terms as Perl itself.=head1 DISCLAIMER OF WARRANTY=for stopwords MERCHANTABILITY LICENCEBECAUSE THIS SOFTWARE IS LICENSED FREE OF CHARGE, THERE IS NO WARRANTYFOR THE SOFTWARE, TO THE EXTENT PERMITTED BY APPLICABLE LAW. EXCEPT WHENOTHERWISE STATED IN WRITING THE COPYRIGHT HOLDERS AND/OR OTHER PARTIESPROVIDE THE SOFTWARE "AS IS" WITHOUT WARRANTY OF ANY KIND, EITHEREXPRESSED OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIEDWARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. THEENTIRE RISK AS TO THE QUALITY AND PERFORMANCE OF THE SOFTWARE IS WITHYOU. SHOULD THE SOFTWARE PROVE DEFECTIVE, YOU ASSUME THE COST OF ALLNECESSARY SERVICING, REPAIR, OR CORRECTION.IN NO EVENT UNLESS REQUIRED BY APPLICABLE LAW OR AGREED TO IN WRITINGWILL ANY COPYRIGHT HOLDER, OR ANY OTHER PARTY WHO MAY MODIFY AND/ORREDISTRIBUTE THE SOFTWARE AS PERMITTED BY THE ABOVE LICENCE, BELIABLE TO YOU FOR DAMAGES, INCLUDING ANY GENERAL, SPECIAL, INCIDENTAL,OR CONSEQUENTIAL DAMAGES ARISING OUT OF THE USE OR INABILITY TO USETHE SOFTWARE (INCLUDING BUT NOT LIMITED TO LOSS OF DATA OR DATA BEINGRENDERED INACCURATE OR LOSSES SUSTAINED BY YOU OR THIRD PARTIES OR AFAILURE OF THE SOFTWARE TO OPERATE WITH ANY OTHER SOFTWARE), EVEN IFSUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE POSSIBILITY OFSUCH DAMAGES.