From: Hsin-Yi Wang <hsinyi@chromium.org>
To: linux-arm-kernel@lists.infradead.org
Cc: Rob Herring <robh+dt@kernel.org>,
devicetree@vger.kernel.org, linux-kernel@vger.kernel.org,
Frank Rowand <frowand.list@gmail.com>,
Catalin Marinas <catalin.marinas@arm.com>,
Will Deacon <will.deacon@arm.com>,
Andrew Morton <akpm@linux-foundation.org>,
Mike Rapoport <rppt@linux.ibm.com>,
Ard Biesheuvel <ard.biesheuvel@linaro.org>,
Miles Chen <miles.chen@mediatek.com>,
Hsin-Yi Wang <hsinyi@chromium.org>,
James Morse <james.morse@arm.com>,
Andrew Murray <andrew.murray@arm.com>,
Mark Rutland <mark.rutland@arm.com>,
Chintan Pandya <cpandya@codeaurora.org>,
Jun Yao <yaojun8558363@gmail.com>, Yu Zhao <yuzhao@google.com>,
Robin Murphy <robin.murphy@arm.com>,
Laura Abbott <labbott@redhat.com>,
Stephen Boyd <swboyd@chromium.org>,
Kees Cook <keescook@chromium.org>
Subject: [PATCH v3 3/3] fdt: add support for rng-seed
Date: Thu, 16 May 2019 18:28:17 +0800 [thread overview]
Message-ID: <20190516102817.188519-3-hsinyi@chromium.org> (raw)
In-Reply-To: <20190516102817.188519-1-hsinyi@chromium.org>
Introducing a chosen node, rng-seed, which is an entropy that can be
passed to kernel called very early to increase initial device
randomness. Bootloader should provide this entropy and the value is
read from /chosen/rng-seed in DT.
Signed-off-by: Hsin-Yi Wang <hsinyi@chromium.org>
---
change v2->v3:
1. use arch hook for fdt pgprot change
2. handle CONFIG_KEXEC
---
Documentation/devicetree/bindings/chosen.txt | 14 +++++
drivers/of/fdt.c | 55 ++++++++++++++++++++
2 files changed, 69 insertions(+)
diff --git a/Documentation/devicetree/bindings/chosen.txt b/Documentation/devicetree/bindings/chosen.txt
index 45e79172a646..fef5c82672dc 100644
--- a/Documentation/devicetree/bindings/chosen.txt
+++ b/Documentation/devicetree/bindings/chosen.txt
@@ -28,6 +28,20 @@ mode) when EFI_RNG_PROTOCOL is supported, it will be overwritten by
the Linux EFI stub (which will populate the property itself, using
EFI_RNG_PROTOCOL).
+rng-seed
+-----------
+
+This property served as an entropy to add device randomness. It is parsed
+as a byte array, e.g.
+
+/ {
+ chosen {
+ rng-seed = <0x31 0x95 0x1b 0x3c 0xc9 0xfa 0xb3 ...>;
+ };
+};
+
+This random value should be provided by bootloader.
+
stdout-path
-----------
diff --git a/drivers/of/fdt.c b/drivers/of/fdt.c
index e84971d1e9ea..e9862657268d 100644
--- a/drivers/of/fdt.c
+++ b/drivers/of/fdt.c
@@ -10,6 +10,7 @@
#include <linux/crc32.h>
#include <linux/kernel.h>
+#include <linux/kexec.h>
#include <linux/initrd.h>
#include <linux/memblock.h>
#include <linux/mutex.h>
@@ -24,6 +25,8 @@
#include <linux/debugfs.h>
#include <linux/serial_core.h>
#include <linux/sysfs.h>
+#include <linux/random.h>
+#include <linux/reboot.h>
#include <asm/setup.h> /* for COMMAND_LINE_SIZE */
#include <asm/page.h>
@@ -1087,11 +1090,14 @@ int __init early_init_dt_scan_memory(unsigned long node, const char *uname,
return 0;
}
+int rng_seed_size;
+
int __init early_init_dt_scan_chosen(unsigned long node, const char *uname,
int depth, void *data)
{
int l;
const char *p;
+ const void *rng_seed;
pr_debug("search \"chosen\", depth: %d, uname: %s\n", depth, uname);
@@ -1126,6 +1132,16 @@ int __init early_init_dt_scan_chosen(unsigned long node, const char *uname,
pr_debug("Command line is: %s\n", (char*)data);
+ rng_seed = of_get_flat_dt_prop(node, "rng-seed", &rng_seed_size);
+ if (rng_seed && rng_seed_size > 0) {
+ add_device_randomness(rng_seed, rng_seed_size);
+
+ /* try to clear seed so it won't be found. */
+ update_fdt_pgprot(PAGE_KERNEL);
+ fdt_delprop(initial_boot_params, node, "rng-seed");
+ update_fdt_pgprot(PAGE_KERNEL_RO);
+ }
+
/* break now */
return 1;
}
@@ -1327,4 +1343,43 @@ static int __init of_fdt_raw_init(void)
late_initcall(of_fdt_raw_init);
#endif
+#ifdef CONFIG_KEXEC
+static int update_fdt_random_seed(struct notifier_block *nb,
+ unsigned long code, void *unused)
+{
+ int node;
+ void *rng_seed;
+
+ if (!kexec_in_progress || !rng_seed_size)
+ return NOTIFY_DONE;
+
+ node = fdt_path_offset(initial_boot_params, "/chosen");
+ if (node < 0)
+ node = fdt_path_offset(initial_boot_params, "/chosen@0");
+ if (node < 0)
+ return NOTIFY_DONE;
+
+ rng_seed = kmalloc(rng_seed_size, GFP_ATOMIC);
+ get_random_bytes(rng_seed, rng_seed_size);
+
+ update_fdt_pgprot(PAGE_KERNEL);
+ fdt_setprop(initial_boot_params, node, "rng-seed", rng_seed,
+ rng_seed_size);
+
+ kfree(rng_seed);
+
+ return NOTIFY_DONE;
+}
+
+static struct notifier_block fdt_random_seed_nb = {
+ .notifier_call = update_fdt_random_seed,
+};
+
+static int register_update_fdt_random_seed(void)
+{
+ return register_reboot_notifier(&fdt_random_seed_nb);
+}
+late_initcall(register_update_fdt_random_seed);
+#endif
+
#endif /* CONFIG_OF_EARLY_FLATTREE */
--
2.20.1
WARNING: multiple messages have this Message-ID (diff)
From: Hsin-Yi Wang <hsinyi@chromium.org>
To: linux-arm-kernel@lists.infradead.org
Cc: Rob Herring <robh+dt@kernel.org>,
devicetree@vger.kernel.org, linux-kernel@vger.kernel.org,
Frank Rowand <frowand.list@gmail.com>,
Catalin Marinas <catalin.marinas@arm.com>,
Will Deacon <will.deacon@arm.com>,
Andrew Morton <akpm@linux-foundation.org>,
Mike Rapoport <rppt@linux.ibm.com>,
Ard Biesheuvel <ard.biesheuvel@linaro.org>,
Miles Chen <miles.chen@mediatek.com>,
Hsin-Yi Wang <hsinyi@chromium.org>,
James Morse <james.morse@arm.com>,
Andrew Murray <andrew.murray@arm.com>,
Mark Rutland <mark.rutland@arm.com>,
Chintan Pandya <cpandya@codeaurora.org>,
Jun Yao <yaojun8558363@gmail.com>, Yu Zhao <yuzhao@google.com>,
Robin Murphy <robin.murphy@arm.com>,
Laura Abbott <labbott@redhat.com>,
Stephen Boyd <swboyd@chromium.org>, Kees Cook <keescook@ch>
Subject: [PATCH v3 3/3] fdt: add support for rng-seed
Date: Thu, 16 May 2019 18:28:17 +0800 [thread overview]
Message-ID: <20190516102817.188519-3-hsinyi@chromium.org> (raw)
In-Reply-To: <20190516102817.188519-1-hsinyi@chromium.org>
Introducing a chosen node, rng-seed, which is an entropy that can be
passed to kernel called very early to increase initial device
randomness. Bootloader should provide this entropy and the value is
read from /chosen/rng-seed in DT.
Signed-off-by: Hsin-Yi Wang <hsinyi@chromium.org>
---
change v2->v3:
1. use arch hook for fdt pgprot change
2. handle CONFIG_KEXEC
---
Documentation/devicetree/bindings/chosen.txt | 14 +++++
drivers/of/fdt.c | 55 ++++++++++++++++++++
2 files changed, 69 insertions(+)
diff --git a/Documentation/devicetree/bindings/chosen.txt b/Documentation/devicetree/bindings/chosen.txt
index 45e79172a646..fef5c82672dc 100644
--- a/Documentation/devicetree/bindings/chosen.txt
+++ b/Documentation/devicetree/bindings/chosen.txt
@@ -28,6 +28,20 @@ mode) when EFI_RNG_PROTOCOL is supported, it will be overwritten by
the Linux EFI stub (which will populate the property itself, using
EFI_RNG_PROTOCOL).
+rng-seed
+-----------
+
+This property served as an entropy to add device randomness. It is parsed
+as a byte array, e.g.
+
+/ {
+ chosen {
+ rng-seed = <0x31 0x95 0x1b 0x3c 0xc9 0xfa 0xb3 ...>;
+ };
+};
+
+This random value should be provided by bootloader.
+
stdout-path
-----------
diff --git a/drivers/of/fdt.c b/drivers/of/fdt.c
index e84971d1e9ea..e9862657268d 100644
--- a/drivers/of/fdt.c
+++ b/drivers/of/fdt.c
@@ -10,6 +10,7 @@
#include <linux/crc32.h>
#include <linux/kernel.h>
+#include <linux/kexec.h>
#include <linux/initrd.h>
#include <linux/memblock.h>
#include <linux/mutex.h>
@@ -24,6 +25,8 @@
#include <linux/debugfs.h>
#include <linux/serial_core.h>
#include <linux/sysfs.h>
+#include <linux/random.h>
+#include <linux/reboot.h>
#include <asm/setup.h> /* for COMMAND_LINE_SIZE */
#include <asm/page.h>
@@ -1087,11 +1090,14 @@ int __init early_init_dt_scan_memory(unsigned long node, const char *uname,
return 0;
}
+int rng_seed_size;
+
int __init early_init_dt_scan_chosen(unsigned long node, const char *uname,
int depth, void *data)
{
int l;
const char *p;
+ const void *rng_seed;
pr_debug("search \"chosen\", depth: %d, uname: %s\n", depth, uname);
@@ -1126,6 +1132,16 @@ int __init early_init_dt_scan_chosen(unsigned long node, const char *uname,
pr_debug("Command line is: %s\n", (char*)data);
+ rng_seed = of_get_flat_dt_prop(node, "rng-seed", &rng_seed_size);
+ if (rng_seed && rng_seed_size > 0) {
+ add_device_randomness(rng_seed, rng_seed_size);
+
+ /* try to clear seed so it won't be found. */
+ update_fdt_pgprot(PAGE_KERNEL);
+ fdt_delprop(initial_boot_params, node, "rng-seed");
+ update_fdt_pgprot(PAGE_KERNEL_RO);
+ }
+
/* break now */
return 1;
}
@@ -1327,4 +1343,43 @@ static int __init of_fdt_raw_init(void)
late_initcall(of_fdt_raw_init);
#endif
+#ifdef CONFIG_KEXEC
+static int update_fdt_random_seed(struct notifier_block *nb,
+ unsigned long code, void *unused)
+{
+ int node;
+ void *rng_seed;
+
+ if (!kexec_in_progress || !rng_seed_size)
+ return NOTIFY_DONE;
+
+ node = fdt_path_offset(initial_boot_params, "/chosen");
+ if (node < 0)
+ node = fdt_path_offset(initial_boot_params, "/chosen@0");
+ if (node < 0)
+ return NOTIFY_DONE;
+
+ rng_seed = kmalloc(rng_seed_size, GFP_ATOMIC);
+ get_random_bytes(rng_seed, rng_seed_size);
+
+ update_fdt_pgprot(PAGE_KERNEL);
+ fdt_setprop(initial_boot_params, node, "rng-seed", rng_seed,
+ rng_seed_size);
+
+ kfree(rng_seed);
+
+ return NOTIFY_DONE;
+}
+
+static struct notifier_block fdt_random_seed_nb = {
+ .notifier_call = update_fdt_random_seed,
+};
+
+static int register_update_fdt_random_seed(void)
+{
+ return register_reboot_notifier(&fdt_random_seed_nb);
+}
+late_initcall(register_update_fdt_random_seed);
+#endif
+
#endif /* CONFIG_OF_EARLY_FLATTREE */
--
2.20.1
WARNING: multiple messages have this Message-ID (diff)
From: Hsin-Yi Wang <hsinyi@chromium.org>
To: linux-arm-kernel@lists.infradead.org
Cc: Mark Rutland <mark.rutland@arm.com>,
devicetree@vger.kernel.org, Yu Zhao <yuzhao@google.com>,
Kees Cook <keescook@chromium.org>,
Ard Biesheuvel <ard.biesheuvel@linaro.org>,
Catalin Marinas <catalin.marinas@arm.com>,
Stephen Boyd <swboyd@chromium.org>,
Chintan Pandya <cpandya@codeaurora.org>,
Will Deacon <will.deacon@arm.com>,
linux-kernel@vger.kernel.org, Mike Rapoport <rppt@linux.ibm.com>,
Jun Yao <yaojun8558363@gmail.com>,
Miles Chen <miles.chen@mediatek.com>,
Rob Herring <robh+dt@kernel.org>,
James Morse <james.morse@arm.com>,
Hsin-Yi Wang <hsinyi@chromium.org>,
Andrew Murray <andrew.murray@arm.com>,
Andrew Morton <akpm@linux-foundation.org>,
Laura Abbott <labbott@redhat.com>,
Frank Rowand <frowand.list@gmail.com>,
Robin Murphy <robin.murphy@arm.com>
Subject: [PATCH v3 3/3] fdt: add support for rng-seed
Date: Thu, 16 May 2019 18:28:17 +0800 [thread overview]
Message-ID: <20190516102817.188519-3-hsinyi@chromium.org> (raw)
In-Reply-To: <20190516102817.188519-1-hsinyi@chromium.org>
Introducing a chosen node, rng-seed, which is an entropy that can be
passed to kernel called very early to increase initial device
randomness. Bootloader should provide this entropy and the value is
read from /chosen/rng-seed in DT.
Signed-off-by: Hsin-Yi Wang <hsinyi@chromium.org>
---
change v2->v3:
1. use arch hook for fdt pgprot change
2. handle CONFIG_KEXEC
---
Documentation/devicetree/bindings/chosen.txt | 14 +++++
drivers/of/fdt.c | 55 ++++++++++++++++++++
2 files changed, 69 insertions(+)
diff --git a/Documentation/devicetree/bindings/chosen.txt b/Documentation/devicetree/bindings/chosen.txt
index 45e79172a646..fef5c82672dc 100644
--- a/Documentation/devicetree/bindings/chosen.txt
+++ b/Documentation/devicetree/bindings/chosen.txt
@@ -28,6 +28,20 @@ mode) when EFI_RNG_PROTOCOL is supported, it will be overwritten by
the Linux EFI stub (which will populate the property itself, using
EFI_RNG_PROTOCOL).
+rng-seed
+-----------
+
+This property served as an entropy to add device randomness. It is parsed
+as a byte array, e.g.
+
+/ {
+ chosen {
+ rng-seed = <0x31 0x95 0x1b 0x3c 0xc9 0xfa 0xb3 ...>;
+ };
+};
+
+This random value should be provided by bootloader.
+
stdout-path
-----------
diff --git a/drivers/of/fdt.c b/drivers/of/fdt.c
index e84971d1e9ea..e9862657268d 100644
--- a/drivers/of/fdt.c
+++ b/drivers/of/fdt.c
@@ -10,6 +10,7 @@
#include <linux/crc32.h>
#include <linux/kernel.h>
+#include <linux/kexec.h>
#include <linux/initrd.h>
#include <linux/memblock.h>
#include <linux/mutex.h>
@@ -24,6 +25,8 @@
#include <linux/debugfs.h>
#include <linux/serial_core.h>
#include <linux/sysfs.h>
+#include <linux/random.h>
+#include <linux/reboot.h>
#include <asm/setup.h> /* for COMMAND_LINE_SIZE */
#include <asm/page.h>
@@ -1087,11 +1090,14 @@ int __init early_init_dt_scan_memory(unsigned long node, const char *uname,
return 0;
}
+int rng_seed_size;
+
int __init early_init_dt_scan_chosen(unsigned long node, const char *uname,
int depth, void *data)
{
int l;
const char *p;
+ const void *rng_seed;
pr_debug("search \"chosen\", depth: %d, uname: %s\n", depth, uname);
@@ -1126,6 +1132,16 @@ int __init early_init_dt_scan_chosen(unsigned long node, const char *uname,
pr_debug("Command line is: %s\n", (char*)data);
+ rng_seed = of_get_flat_dt_prop(node, "rng-seed", &rng_seed_size);
+ if (rng_seed && rng_seed_size > 0) {
+ add_device_randomness(rng_seed, rng_seed_size);
+
+ /* try to clear seed so it won't be found. */
+ update_fdt_pgprot(PAGE_KERNEL);
+ fdt_delprop(initial_boot_params, node, "rng-seed");
+ update_fdt_pgprot(PAGE_KERNEL_RO);
+ }
+
/* break now */
return 1;
}
@@ -1327,4 +1343,43 @@ static int __init of_fdt_raw_init(void)
late_initcall(of_fdt_raw_init);
#endif
+#ifdef CONFIG_KEXEC
+static int update_fdt_random_seed(struct notifier_block *nb,
+ unsigned long code, void *unused)
+{
+ int node;
+ void *rng_seed;
+
+ if (!kexec_in_progress || !rng_seed_size)
+ return NOTIFY_DONE;
+
+ node = fdt_path_offset(initial_boot_params, "/chosen");
+ if (node < 0)
+ node = fdt_path_offset(initial_boot_params, "/chosen@0");
+ if (node < 0)
+ return NOTIFY_DONE;
+
+ rng_seed = kmalloc(rng_seed_size, GFP_ATOMIC);
+ get_random_bytes(rng_seed, rng_seed_size);
+
+ update_fdt_pgprot(PAGE_KERNEL);
+ fdt_setprop(initial_boot_params, node, "rng-seed", rng_seed,
+ rng_seed_size);
+
+ kfree(rng_seed);
+
+ return NOTIFY_DONE;
+}
+
+static struct notifier_block fdt_random_seed_nb = {
+ .notifier_call = update_fdt_random_seed,
+};
+
+static int register_update_fdt_random_seed(void)
+{
+ return register_reboot_notifier(&fdt_random_seed_nb);
+}
+late_initcall(register_update_fdt_random_seed);
+#endif
+
#endif /* CONFIG_OF_EARLY_FLATTREE */
--
2.20.1
_______________________________________________
linux-arm-kernel mailing list
linux-arm-kernel@lists.infradead.org
http://lists.infradead.org/mailman/listinfo/linux-arm-kernel
next prev parent reply other threads:[~2019-05-16 10:29 UTC|newest]
Thread overview: 38+ messages / expand[flat|nested] mbox.gz Atom feed top
2019-05-16 10:28 [PATCH v3 1/3] include/of_fdt.h: add a weak arch hook to update fdt pgprot Hsin-Yi Wang
2019-05-16 10:28 ` Hsin-Yi Wang
2019-05-16 10:28 ` Hsin-Yi Wang
2019-05-16 10:28 ` [PATCH v3 2/3] arm64: implement update_fdt_pgprot() Hsin-Yi Wang
2019-05-16 10:28 ` Hsin-Yi Wang
2019-05-16 10:28 ` Hsin-Yi Wang
2019-05-16 14:37 ` Rob Herring
2019-05-16 14:37 ` Rob Herring
2019-05-16 14:37 ` Rob Herring
2019-05-16 14:39 ` Ard Biesheuvel
2019-05-16 14:39 ` Ard Biesheuvel
2019-05-16 14:39 ` Ard Biesheuvel
2019-05-16 14:43 ` Mark Rutland
2019-05-16 14:43 ` Mark Rutland
2019-05-16 14:43 ` Mark Rutland
2019-05-16 15:17 ` Rob Herring
2019-05-16 15:17 ` Rob Herring
2019-05-16 15:17 ` Rob Herring
2019-05-16 14:51 ` Hsin-Yi Wang
2019-05-16 14:51 ` Hsin-Yi Wang
2019-05-16 14:51 ` Hsin-Yi Wang
2019-05-16 15:32 ` Rob Herring
2019-05-16 15:32 ` Rob Herring
2019-05-16 15:32 ` Rob Herring
2019-05-16 16:48 ` Hsin-Yi Wang
2019-05-16 16:48 ` Hsin-Yi Wang
2019-05-16 16:48 ` Hsin-Yi Wang
2019-05-16 17:34 ` James Morse
2019-05-16 17:34 ` James Morse
2019-05-16 17:34 ` James Morse
2019-05-16 17:44 ` Stephen Boyd
2019-05-16 17:44 ` Stephen Boyd
2019-05-16 17:44 ` Stephen Boyd
2019-05-16 10:28 ` Hsin-Yi Wang [this message]
2019-05-16 10:28 ` [PATCH v3 3/3] fdt: add support for rng-seed Hsin-Yi Wang
2019-05-16 10:28 ` Hsin-Yi Wang
2019-05-16 15:39 ` Randy Dunlap
2019-05-16 15:39 ` Randy Dunlap
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20190516102817.188519-3-hsinyi@chromium.org \
--to=hsinyi@chromium.org \
--cc=akpm@linux-foundation.org \
--cc=andrew.murray@arm.com \
--cc=ard.biesheuvel@linaro.org \
--cc=catalin.marinas@arm.com \
--cc=cpandya@codeaurora.org \
--cc=devicetree@vger.kernel.org \
--cc=frowand.list@gmail.com \
--cc=james.morse@arm.com \
--cc=keescook@chromium.org \
--cc=labbott@redhat.com \
--cc=linux-arm-kernel@lists.infradead.org \
--cc=linux-kernel@vger.kernel.org \
--cc=mark.rutland@arm.com \
--cc=miles.chen@mediatek.com \
--cc=robh+dt@kernel.org \
--cc=robin.murphy@arm.com \
--cc=rppt@linux.ibm.com \
--cc=swboyd@chromium.org \
--cc=will.deacon@arm.com \
--cc=yaojun8558363@gmail.com \
--cc=yuzhao@google.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.