secp256k1-zkp/src/testrand_impl.h

/***********************************************************************
 * Copyright (c) 2013-2015 Pieter Wuille                               *
 * Distributed under the MIT software license, see the accompanying    *
 * file COPYING or https://www.opensource.org/licenses/mit-license.php.*
 ***********************************************************************/

#ifndef SECP256K1_TESTRAND_IMPL_H
#define SECP256K1_TESTRAND_IMPL_H

#include <stdint.h>
#include <stdio.h>
#include <string.h>

#include "testrand.h"
#include "hash.h"

static uint64_t secp256k1_test_state[4];
static uint64_t secp256k1_test_rng_integer;
static int secp256k1_test_rng_integer_bits_left = 0;

SECP256K1_INLINE static void secp256k1_testrand_seed(const unsigned char *seed16) {
    static const unsigned char PREFIX[19] = "secp256k1 test init";
    unsigned char out32[32];
    secp256k1_sha256 hash;
    int i;

    /* Use SHA256(PREFIX || seed16) as initial state. */
    secp256k1_sha256_initialize(&hash);
    secp256k1_sha256_write(&hash, PREFIX, sizeof(PREFIX));
    secp256k1_sha256_write(&hash, seed16, 16);
    secp256k1_sha256_finalize(&hash, out32);
    for (i = 0; i < 4; ++i) {
        uint64_t s = 0;
        int j;
        for (j = 0; j < 8; ++j) s = (s << 8) | out32[8*i + j];
        secp256k1_test_state[i] = s;
    }
    secp256k1_test_rng_integer_bits_left = 0;
}

SECP256K1_INLINE static uint64_t rotl(const uint64_t x, int k) {
    return (x << k) | (x >> (64 - k));
}

SECP256K1_INLINE static uint64_t secp256k1_testrand64(void) {
    /* Test-only Xoshiro256++ RNG. See https://prng.di.unimi.it/ */
    const uint64_t result = rotl(secp256k1_test_state[0] + secp256k1_test_state[3], 23) + secp256k1_test_state[0];
    const uint64_t t = secp256k1_test_state[1] << 17;
    secp256k1_test_state[2] ^= secp256k1_test_state[0];
    secp256k1_test_state[3] ^= secp256k1_test_state[1];
    secp256k1_test_state[1] ^= secp256k1_test_state[2];
    secp256k1_test_state[0] ^= secp256k1_test_state[3];
    secp256k1_test_state[2] ^= t;
    secp256k1_test_state[3] = rotl(secp256k1_test_state[3], 45);
    return result;
}

SECP256K1_INLINE static uint64_t secp256k1_testrand_bits(int bits) {
    uint64_t ret;
    if (secp256k1_test_rng_integer_bits_left < bits) {
        secp256k1_test_rng_integer = secp256k1_testrand64();
        secp256k1_test_rng_integer_bits_left = 64;
    }
    ret = secp256k1_test_rng_integer;
    secp256k1_test_rng_integer >>= bits;
    secp256k1_test_rng_integer_bits_left -= bits;
    ret &= ((~((uint64_t)0)) >> (64 - bits));
    return ret;
}

SECP256K1_INLINE static uint32_t secp256k1_testrand32(void) {
    return secp256k1_testrand_bits(32);
}

static uint32_t secp256k1_testrand_int(uint32_t range) {
    /* We want a uniform integer between 0 and range-1, inclusive.
     * B is the smallest number such that range <= 2**B.
     * two mechanisms implemented here:
     * - generate B bits numbers until one below range is found, and return it
     * - find the largest multiple M of range that is <= 2**(B+A), generate B+A
     *   bits numbers until one below M is found, and return it modulo range
     * The second mechanism consumes A more bits of entropy in every iteration,
     * but may need fewer iterations due to M being closer to 2**(B+A) then
     * range is to 2**B. The array below (indexed by B) contains a 0 when the
     * first mechanism is to be used, and the number A otherwise.
     */
    static const int addbits[] = {0, 0, 0, 0, 0, 0, 0, 0, 0, 1, 2, 2, 2, 2, 2, 2, 2, 2, 2, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 1, 0};
    uint32_t trange, mult;
    int bits = 0;
    if (range <= 1) {
        return 0;
    }
    trange = range - 1;
    while (trange > 0) {
        trange >>= 1;
        bits++;
    }
    if (addbits[bits]) {
        bits = bits + addbits[bits];
        mult = ((~((uint32_t)0)) >> (32 - bits)) / range;
        trange = range * mult;
    } else {
        trange = range;
        mult = 1;
    }
    while(1) {
        uint32_t x = secp256k1_testrand_bits(bits);
        if (x < trange) {
            return (mult == 1) ? x : (x % range);
        }
    }
}

static void secp256k1_testrand256(unsigned char *b32) {
    int i;
    for (i = 0; i < 4; ++i) {
        uint64_t val = secp256k1_testrand64();
        b32[0] = val;
        b32[1] = val >> 8;
        b32[2] = val >> 16;
        b32[3] = val >> 24;
        b32[4] = val >> 32;
        b32[5] = val >> 40;
        b32[6] = val >> 48;
        b32[7] = val >> 56;
        b32 += 8;
    }
}

static void secp256k1_testrand_bytes_test(unsigned char *bytes, size_t len) {
    size_t bits = 0;
    memset(bytes, 0, len);
    while (bits < len * 8) {
        int now;
        uint32_t val;
        now = 1 + (secp256k1_testrand_bits(6) * secp256k1_testrand_bits(5) + 16) / 31;
        val = secp256k1_testrand_bits(1);
        while (now > 0 && bits < len * 8) {
            bytes[bits / 8] |= val << (bits % 8);
            now--;
            bits++;
        }
    }
}

static void secp256k1_testrand256_test(unsigned char *b32) {
    secp256k1_testrand_bytes_test(b32, 32);
}

static void secp256k1_testrand_flip(unsigned char *b, size_t len) {
    b[secp256k1_testrand_int(len)] ^= (1 << secp256k1_testrand_bits(3));
}

static void secp256k1_testrand_init(const char* hexseed) {
    unsigned char seed16[16] = {0};
    if (hexseed && strlen(hexseed) != 0) {
        int pos = 0;
        while (pos < 16 && hexseed[0] != 0 && hexseed[1] != 0) {
            unsigned short sh;
            if ((sscanf(hexseed, "%2hx", &sh)) == 1) {
                seed16[pos] = sh;
            } else {
                break;
            }
            hexseed += 2;
            pos++;
        }
    } else {
        FILE *frand = fopen("/dev/urandom", "rb");
        if ((frand == NULL) || fread(&seed16, 1, sizeof(seed16), frand) != sizeof(seed16)) {
            uint64_t t = time(NULL) * (uint64_t)1337;
            fprintf(stderr, "WARNING: could not read 16 bytes from /dev/urandom; falling back to insecure PRNG\n");
            seed16[0] ^= t;
            seed16[1] ^= t >> 8;
            seed16[2] ^= t >> 16;
            seed16[3] ^= t >> 24;
            seed16[4] ^= t >> 32;
            seed16[5] ^= t >> 40;
            seed16[6] ^= t >> 48;
            seed16[7] ^= t >> 56;
        }
        if (frand) {
            fclose(frand);
        }
    }

    printf("random seed = %02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x\n", seed16[0], seed16[1], seed16[2], seed16[3], seed16[4], seed16[5], seed16[6], seed16[7], seed16[8], seed16[9], seed16[10], seed16[11], seed16[12], seed16[13], seed16[14], seed16[15]);
    secp256k1_testrand_seed(seed16);
}

static void secp256k1_testrand_finish(void) {
    unsigned char run32[32];
    secp256k1_testrand256(run32);
    printf("random run = %02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x\n", run32[0], run32[1], run32[2], run32[3], run32[4], run32[5], run32[6], run32[7], run32[8], run32[9], run32[10], run32[11], run32[12], run32[13], run32[14], run32[15]);
}

#endif /* SECP256K1_TESTRAND_IMPL_H */
Fix insecure links 2020-12-17 08:33:49 +02:00			`/***********************************************************************`
			`* Copyright (c) 2013-2015 Pieter Wuille *`
			`* Distributed under the MIT software license, see the accompanying *`
			`* file COPYING or https://www.opensource.org/licenses/mit-license.php.*`
			`***********************************************************************/`
MIT License 2013-05-09 15:24:32 +02:00
Fix header guards using reserved identifiers Identifiers starting with an underscore and followed immediately by a capital letter are reserved by the C++ standard. The only header guards not fixed are those in the headers auto-generated from java. 2017-08-26 18:44:21 +03:00			`#ifndef SECP256K1_TESTRAND_IMPL_H`
			`#define SECP256K1_TESTRAND_IMPL_H`
Builtin random 2013-04-20 23:34:41 +02:00
			`#include <stdint.h>`
refactor: move RNG seeding to testrand 2020-09-08 13:40:26 -07:00			`#include <stdio.h>`
Builtin random 2013-04-20 23:34:41 +02:00			`#include <string.h>`

Avoid forward static decl of undefined functions, also fix a paren warning in the tests. 2014-11-12 15:41:47 -08:00			`#include "testrand.h"`
Use RFC6979 for test PRNGs 2015-02-13 15:56:08 -08:00			`#include "hash.h"`
Builtin random 2013-04-20 23:34:41 +02:00
Use xoshiro256++ PRNG instead of RFC6979 in tests 2021-12-24 11:19:29 -05:00			`static uint64_t secp256k1_test_state[4];`
Improve testrand: add extra random functions This commit adds functions: * secp256k1_rand_bits, which works like secp256k1_rand32, but consumes less randomness * secp256k1_rand_int, which produces a uniform integer over any range * secp256k1_rand_bytes_test, which works like secp256k1_rand256_test but for arbitrary byte array 2015-10-17 20:56:53 +02:00			`static uint64_t secp256k1_test_rng_integer;`
			`static int secp256k1_test_rng_integer_bits_left = 0;`
Better randomization for tests 2014-10-17 16:04:00 -07:00
Rename testrand functions to have test in name 2020-09-25 20:50:43 -07:00			`SECP256K1_INLINE static void secp256k1_testrand_seed(const unsigned char *seed16) {`
Use xoshiro256++ PRNG instead of RFC6979 in tests 2021-12-24 11:19:29 -05:00			`static const unsigned char PREFIX[19] = "secp256k1 test init";`
			`unsigned char out32[32];`
			`secp256k1_sha256 hash;`
			`int i;`
Better randomization for tests 2014-10-17 16:04:00 -07:00
Use xoshiro256++ PRNG instead of RFC6979 in tests 2021-12-24 11:19:29 -05:00			`/* Use SHA256(PREFIX \|\| seed16) as initial state. */`
			`secp256k1_sha256_initialize(&hash);`
			`secp256k1_sha256_write(&hash, PREFIX, sizeof(PREFIX));`
			`secp256k1_sha256_write(&hash, seed16, 16);`
			`secp256k1_sha256_finalize(&hash, out32);`
			`for (i = 0; i < 4; ++i) {`
			`uint64_t s = 0;`
			`int j;`
			`for (j = 0; j < 8; ++j) s = (s << 8) \| out32[8*i + j];`
			`secp256k1_test_state[i] = s;`
Use RFC6979 for test PRNGs 2015-02-13 15:56:08 -08:00			`}`
Use xoshiro256++ PRNG instead of RFC6979 in tests 2021-12-24 11:19:29 -05:00			`secp256k1_test_rng_integer_bits_left = 0;`
			`}`

			`SECP256K1_INLINE static uint64_t rotl(const uint64_t x, int k) {`
			`return (x << k) \| (x >> (64 - k));`
			`}`

			`SECP256K1_INLINE static uint64_t secp256k1_testrand64(void) {`
			`/* Test-only Xoshiro256++ RNG. See https://prng.di.unimi.it/ */`
			`const uint64_t result = rotl(secp256k1_test_state[0] + secp256k1_test_state[3], 23) + secp256k1_test_state[0];`
			`const uint64_t t = secp256k1_test_state[1] << 17;`
			`secp256k1_test_state[2] ^= secp256k1_test_state[0];`
			`secp256k1_test_state[3] ^= secp256k1_test_state[1];`
			`secp256k1_test_state[1] ^= secp256k1_test_state[2];`
			`secp256k1_test_state[0] ^= secp256k1_test_state[3];`
			`secp256k1_test_state[2] ^= t;`
			`secp256k1_test_state[3] = rotl(secp256k1_test_state[3], 45);`
			`return result;`
Builtin random 2013-04-20 23:34:41 +02:00			`}`

Use xoshiro256++ PRNG instead of RFC6979 in tests 2021-12-24 11:19:29 -05:00			`SECP256K1_INLINE static uint64_t secp256k1_testrand_bits(int bits) {`
			`uint64_t ret;`
Improve testrand: add extra random functions This commit adds functions: * secp256k1_rand_bits, which works like secp256k1_rand32, but consumes less randomness * secp256k1_rand_int, which produces a uniform integer over any range * secp256k1_rand_bytes_test, which works like secp256k1_rand256_test but for arbitrary byte array 2015-10-17 20:56:53 +02:00			`if (secp256k1_test_rng_integer_bits_left < bits) {`
Use xoshiro256++ PRNG instead of RFC6979 in tests 2021-12-24 11:19:29 -05:00			`secp256k1_test_rng_integer = secp256k1_testrand64();`
			`secp256k1_test_rng_integer_bits_left = 64;`
Improve testrand: add extra random functions This commit adds functions: * secp256k1_rand_bits, which works like secp256k1_rand32, but consumes less randomness * secp256k1_rand_int, which produces a uniform integer over any range * secp256k1_rand_bytes_test, which works like secp256k1_rand256_test but for arbitrary byte array 2015-10-17 20:56:53 +02:00			`}`
			`ret = secp256k1_test_rng_integer;`
			`secp256k1_test_rng_integer >>= bits;`
			`secp256k1_test_rng_integer_bits_left -= bits;`
Use xoshiro256++ PRNG instead of RFC6979 in tests 2021-12-24 11:19:29 -05:00			`ret &= ((~((uint64_t)0)) >> (64 - bits));`
Improve testrand: add extra random functions This commit adds functions: * secp256k1_rand_bits, which works like secp256k1_rand32, but consumes less randomness * secp256k1_rand_int, which produces a uniform integer over any range * secp256k1_rand_bytes_test, which works like secp256k1_rand256_test but for arbitrary byte array 2015-10-17 20:56:53 +02:00			`return ret;`
			`}`

Use xoshiro256++ PRNG instead of RFC6979 in tests 2021-12-24 11:19:29 -05:00			`SECP256K1_INLINE static uint32_t secp256k1_testrand32(void) {`
			`return secp256k1_testrand_bits(32);`
			`}`

Rename testrand functions to have test in name 2020-09-25 20:50:43 -07:00			`static uint32_t secp256k1_testrand_int(uint32_t range) {`
Faster secp256k1_rand_int implementation 2015-10-18 03:58:23 +02:00			`/* We want a uniform integer between 0 and range-1, inclusive.`
			`* B is the smallest number such that range <= 2**B.`
			`* two mechanisms implemented here:`
			`* - generate B bits numbers until one below range is found, and return it`
			`* - find the largest multiple M of range that is <= 2**(B+A), generate B+A`
			`* bits numbers until one below M is found, and return it modulo range`
			`* The second mechanism consumes A more bits of entropy in every iteration,`
			`* but may need fewer iterations due to M being closer to 2**(B+A) then`
			`* range is to 2**B. The array below (indexed by B) contains a 0 when the`
			`* first mechanism is to be used, and the number A otherwise.`
			`*/`
			`static const int addbits[] = {0, 0, 0, 0, 0, 0, 0, 0, 0, 1, 2, 2, 2, 2, 2, 2, 2, 2, 2, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 3, 2, 1, 0};`
			`uint32_t trange, mult;`
Improve testrand: add extra random functions This commit adds functions: * secp256k1_rand_bits, which works like secp256k1_rand32, but consumes less randomness * secp256k1_rand_int, which produces a uniform integer over any range * secp256k1_rand_bytes_test, which works like secp256k1_rand256_test but for arbitrary byte array 2015-10-17 20:56:53 +02:00			`int bits = 0;`
			`if (range <= 1) {`
			`return 0;`
			`}`
Faster secp256k1_rand_int implementation 2015-10-18 03:58:23 +02:00			`trange = range - 1;`
			`while (trange > 0) {`
			`trange >>= 1;`
Improve testrand: add extra random functions This commit adds functions: * secp256k1_rand_bits, which works like secp256k1_rand32, but consumes less randomness * secp256k1_rand_int, which produces a uniform integer over any range * secp256k1_rand_bytes_test, which works like secp256k1_rand256_test but for arbitrary byte array 2015-10-17 20:56:53 +02:00			`bits++;`
			`}`
Faster secp256k1_rand_int implementation 2015-10-18 03:58:23 +02:00			`if (addbits[bits]) {`
			`bits = bits + addbits[bits];`
			`mult = ((~((uint32_t)0)) >> (32 - bits)) / range;`
			`trange = range * mult;`
			`} else {`
			`trange = range;`
			`mult = 1;`
			`}`
			`while(1) {`
Rename testrand functions to have test in name 2020-09-25 20:50:43 -07:00			`uint32_t x = secp256k1_testrand_bits(bits);`
Faster secp256k1_rand_int implementation 2015-10-18 03:58:23 +02:00			`if (x < trange) {`
			`return (mult == 1) ? x : (x % range);`
Improve testrand: add extra random functions This commit adds functions: * secp256k1_rand_bits, which works like secp256k1_rand32, but consumes less randomness * secp256k1_rand_int, which produces a uniform integer over any range * secp256k1_rand_bytes_test, which works like secp256k1_rand256_test but for arbitrary byte array 2015-10-17 20:56:53 +02:00			`}`
			`}`
			`}`

Rename testrand functions to have test in name 2020-09-25 20:50:43 -07:00			`static void secp256k1_testrand256(unsigned char *b32) {`
Use xoshiro256++ PRNG instead of RFC6979 in tests 2021-12-24 11:19:29 -05:00			`int i;`
			`for (i = 0; i < 4; ++i) {`
			`uint64_t val = secp256k1_testrand64();`
			`b32[0] = val;`
			`b32[1] = val >> 8;`
			`b32[2] = val >> 16;`
			`b32[3] = val >> 24;`
			`b32[4] = val >> 32;`
			`b32[5] = val >> 40;`
			`b32[6] = val >> 48;`
			`b32[7] = val >> 56;`
			`b32 += 8;`
			`}`
Builtin random 2013-04-20 23:34:41 +02:00			`}`

Rename testrand functions to have test in name 2020-09-25 20:50:43 -07:00			`static void secp256k1_testrand_bytes_test(unsigned char *bytes, size_t len) {`
Improve testrand: add extra random functions This commit adds functions: * secp256k1_rand_bits, which works like secp256k1_rand32, but consumes less randomness * secp256k1_rand_int, which produces a uniform integer over any range * secp256k1_rand_bytes_test, which works like secp256k1_rand256_test but for arbitrary byte array 2015-10-17 20:56:53 +02:00			`size_t bits = 0;`
			`memset(bytes, 0, len);`
			`while (bits < len * 8) {`
Use RFC6979 for test PRNGs 2015-02-13 15:56:08 -08:00			`int now;`
			`uint32_t val;`
Rename testrand functions to have test in name 2020-09-25 20:50:43 -07:00			`now = 1 + (secp256k1_testrand_bits(6) * secp256k1_testrand_bits(5) + 16) / 31;`
			`val = secp256k1_testrand_bits(1);`
Improve testrand: add extra random functions This commit adds functions: * secp256k1_rand_bits, which works like secp256k1_rand32, but consumes less randomness * secp256k1_rand_int, which produces a uniform integer over any range * secp256k1_rand_bytes_test, which works like secp256k1_rand256_test but for arbitrary byte array 2015-10-17 20:56:53 +02:00			`while (now > 0 && bits < len * 8) {`
			`bytes[bits / 8] \|= val << (bits % 8);`
Builtin random 2013-04-20 23:34:41 +02:00			`now--;`
			`bits++;`
			`}`
			`}`
			`}`

Rename testrand functions to have test in name 2020-09-25 20:50:43 -07:00			`static void secp256k1_testrand256_test(unsigned char *b32) {`
			`secp256k1_testrand_bytes_test(b32, 32);`
Improve testrand: add extra random functions This commit adds functions: * secp256k1_rand_bits, which works like secp256k1_rand32, but consumes less randomness * secp256k1_rand_int, which produces a uniform integer over any range * secp256k1_rand_bytes_test, which works like secp256k1_rand256_test but for arbitrary byte array 2015-10-17 20:56:53 +02:00			`}`

Rename testrand functions to have test in name 2020-09-25 20:50:43 -07:00			`static void secp256k1_testrand_flip(unsigned char *b, size_t len) {`
secp256k1_testrand_int(2**N) -> secp256k1_testrand_bits(N) 2021-12-24 08:23:46 -05:00			`b[secp256k1_testrand_int(len)] ^= (1 << secp256k1_testrand_bits(3));`
schnorrsig: Add BIP-340 nonce function 2020-05-12 21:23:22 +00:00			`}`

Rename testrand functions to have test in name 2020-09-25 20:50:43 -07:00			`static void secp256k1_testrand_init(const char* hexseed) {`
refactor: move RNG seeding to testrand 2020-09-08 13:40:26 -07:00			`unsigned char seed16[16] = {0};`
Support splitting exhaustive tests across cores 2020-09-08 16:27:04 -07:00			`if (hexseed && strlen(hexseed) != 0) {`
refactor: move RNG seeding to testrand 2020-09-08 13:40:26 -07:00			`int pos = 0;`
			`while (pos < 16 && hexseed[0] != 0 && hexseed[1] != 0) {`
			`unsigned short sh;`
			`if ((sscanf(hexseed, "%2hx", &sh)) == 1) {`
			`seed16[pos] = sh;`
			`} else {`
			`break;`
			`}`
			`hexseed += 2;`
			`pos++;`
			`}`
			`} else {`
tests: fopen /dev/urandom in binary mode This makes a difference with mingw builds on Wine, where the subsequent fread() may abort early in the default text mode. The Microsoft C docs say: "In text mode, CTRL+Z is interpreted as an EOF character on input." 2021-05-01 13:06:55 +02:00			`FILE *frand = fopen("/dev/urandom", "rb");`
refactor: move RNG seeding to testrand 2020-09-08 13:40:26 -07:00			`if ((frand == NULL) \|\| fread(&seed16, 1, sizeof(seed16), frand) != sizeof(seed16)) {`
			`uint64_t t = time(NULL) * (uint64_t)1337;`
			`fprintf(stderr, "WARNING: could not read 16 bytes from /dev/urandom; falling back to insecure PRNG\n");`
			`seed16[0] ^= t;`
			`seed16[1] ^= t >> 8;`
			`seed16[2] ^= t >> 16;`
			`seed16[3] ^= t >> 24;`
			`seed16[4] ^= t >> 32;`
			`seed16[5] ^= t >> 40;`
			`seed16[6] ^= t >> 48;`
			`seed16[7] ^= t >> 56;`
			`}`
			`if (frand) {`
			`fclose(frand);`
			`}`
			`}`

			`printf("random seed = %02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x\n", seed16[0], seed16[1], seed16[2], seed16[3], seed16[4], seed16[5], seed16[6], seed16[7], seed16[8], seed16[9], seed16[10], seed16[11], seed16[12], seed16[13], seed16[14], seed16[15]);`
Rename testrand functions to have test in name 2020-09-25 20:50:43 -07:00			`secp256k1_testrand_seed(seed16);`
refactor: move RNG seeding to testrand 2020-09-08 13:40:26 -07:00			`}`

Rename testrand functions to have test in name 2020-09-25 20:50:43 -07:00			`static void secp256k1_testrand_finish(void) {`
refactor: move RNG seeding to testrand 2020-09-08 13:40:26 -07:00			`unsigned char run32[32];`
Rename testrand functions to have test in name 2020-09-25 20:50:43 -07:00			`secp256k1_testrand256(run32);`
refactor: move RNG seeding to testrand 2020-09-08 13:40:26 -07:00			`printf("random run = %02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x%02x\n", run32[0], run32[1], run32[2], run32[3], run32[4], run32[5], run32[6], run32[7], run32[8], run32[9], run32[10], run32[11], run32[12], run32[13], run32[14], run32[15]);`
			`}`

Fix header guards using reserved identifiers Identifiers starting with an underscore and followed immediately by a capital letter are reserved by the C++ standard. The only header guards not fixed are those in the headers auto-generated from java. 2017-08-26 18:44:21 +03:00			`#endif /* SECP256K1_TESTRAND_IMPL_H */`