[0/3] crypto: jitterentropy - bound collection loop

Message ID	20211130141009.6791-1-nstange@suse.de (mailing list archive)
Headers	show Return-Path: <linux-crypto-owner@kernel.org> From: Nicolai Stange <nstange@suse.de> To: =?utf-8?q?Stephan_M=C3=BCller?= <smueller@chronox.de>, Herbert Xu <herbert@gondor.apana.org.au>, "David S. Miller" <davem@davemloft.net> Cc: Torsten Duwe <duwe@suse.de>, linux-crypto@vger.kernel.org, linux-kernel@vger.kernel.org, Nicolai Stange <nstange@suse.de> Subject: [PATCH 0/3] crypto: jitterentropy - bound collection loop Date: Tue, 30 Nov 2021 15:10:06 +0100 Message-Id: <20211130141009.6791-1-nstange@suse.de> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Precedence: bulk
Series	crypto: jitterentropy - bound collection loop \| expand [0/3] crypto: jitterentropy - bound collection loop [1/3] crypto: drbg - ignore jitterentropy errors if not in FIPS mode [2/3] crypto: jitter - don't limit ->health_failure check to FIPS mode [3/3] crypto: jitter - quit sample collection loop upon RCT failure

Message ID

20211130141009.6791-1-nstange@suse.de (mailing list archive)

Headers

From: Nicolai Stange <nstange@suse.de>
To: =?utf-8?q?Stephan_M=C3=BCller?= <smueller@chronox.de>,
 Herbert Xu <herbert@gondor.apana.org.au>,
 "David S. Miller" <davem@davemloft.net>
Cc: Torsten Duwe <duwe@suse.de>, linux-crypto@vger.kernel.org,
        linux-kernel@vger.kernel.org, Nicolai Stange <nstange@suse.de>
Subject: [PATCH 0/3] crypto: jitterentropy - bound collection loop
Date: Tue, 30 Nov 2021 15:10:06 +0100
Message-Id: <20211130141009.6791-1-nstange@suse.de>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Precedence: bulk

Series

crypto: jitterentropy - bound collection loop | expand

Message

Nicolai Stange Nov. 30, 2021, 2:10 p.m. UTC

Hi,

the sampling loop in jent_gen_entropy() can potentially run indefinitely
w/o making any forward progress, namely if only stuck samples are taken
for whatever reason.

There's a straight-forward way to make the entropy collection more robust,
namely to terminate the loop and report an error if this happens. This
patchset here implements that.

Applies to herbert/cryptodev-2.6.git master.

Thanks!

Nicolai

Nicolai Stange (3):
  crypto: drbg - ignore jitterentropy errors if not in FIPS mode
  crypto: jitter - don't limit ->health_failure check to FIPS mode
  crypto: jitter - quit sample collection loop upon RCT failure

 crypto/drbg.c                | 7 +++++--
 crypto/jitterentropy-kcapi.c | 6 ------
 crypto/jitterentropy.c       | 6 +-----
 crypto/jitterentropy.h       | 1 -
 4 files changed, 6 insertions(+), 14 deletions(-)

Comments

Herbert Xu Dec. 11, 2021, 5:55 a.m. UTC | #1

On Tue, Nov 30, 2021 at 03:10:06PM +0100, Nicolai Stange wrote:
> Hi,
> 
> the sampling loop in jent_gen_entropy() can potentially run indefinitely
> w/o making any forward progress, namely if only stuck samples are taken
> for whatever reason.
> 
> There's a straight-forward way to make the entropy collection more robust,
> namely to terminate the loop and report an error if this happens. This
> patchset here implements that.
> 
> Applies to herbert/cryptodev-2.6.git master.
> 
> Thanks!
> 
> Nicolai
> 
> Nicolai Stange (3):
>   crypto: drbg - ignore jitterentropy errors if not in FIPS mode
>   crypto: jitter - don't limit ->health_failure check to FIPS mode
>   crypto: jitter - quit sample collection loop upon RCT failure
> 
>  crypto/drbg.c                | 7 +++++--
>  crypto/jitterentropy-kcapi.c | 6 ------
>  crypto/jitterentropy.c       | 6 +-----
>  crypto/jitterentropy.h       | 1 -
>  4 files changed, 6 insertions(+), 14 deletions(-)
> 
> -- 
> 2.26.2

All applied.  Thanks.