rdrand_8c_source.html

/*

 * Copyright (C) 2023 Michael Brown <mbrown@fensystems.co.uk>.

 *

 * This program is free software; you can redistribute it and/or

 * modify it under the terms of the GNU General Public License as

 * published by the Free Software Foundation; either version 2 of the

 * License, or any later version.

 *

 * This program is distributed in the hope that it will be useful, but

 * WITHOUT ANY WARRANTY; without even the implied warranty of

 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU

 * General Public License for more details.

 *

 * You should have received a copy of the GNU General Public License

 * along with this program; if not, write to the Free Software

 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA

 * 02110-1301, USA.

 *

 * You can also choose to distribute this program under the terms of

 * the Unmodified Binary Distribution Licence (as given in the file

 * COPYING.UBDL), provided that you have satisfied its requirements.

 */


FILE_LICENCE ( GPL2_OR_LATER_OR_UBDL );

FILE_SECBOOT ( PERMITTED );


/** @file

 *

 * Hardware random number generator

 *

 */


#include <errno.h>

#include <ipxe/cpuid.h>

#include <ipxe/entropy.h>

#include <ipxe/drbg.h>


struct entropy_source rdrand_entropy __entropy_source ( ENTROPY_PREFERRED );


/** Number of times to retry RDRAND instruction */

#define RDRAND_RETRY_COUNT 16


/** Colour for debug messages */

#define colour &rdrand_entropy


/**

 * Enable entropy gathering

 *

 * @ret rc              Return status code

 */


static int rdrand_entropy_enable ( void ) {

        struct x86_features features;


        /* Check that RDRAND is supported */

        x86_features ( &features );

        if ( ! ( features.intel.ecx & CPUID_FEATURES_INTEL_ECX_RDRAND ) ) {

                DBGC ( colour, "RDRAND not supported\n" );

                return -ENOTSUP;

        }


        /* Data returned by RDRAND is theoretically full entropy, up

         * to a security strength of 128 bits, so assume that each

         * sample contains exactly 8 bits of entropy.

         */

        if ( DRBG_SECURITY_STRENGTH > 128 )

                return -ENOTSUP;

        entropy_init ( &rdrand_entropy, MIN_ENTROPY ( 8.0 ) );


        return 0;

}


/**

 * Get noise sample

 *

 * @ret noise           Noise sample

 * @ret rc              Return status code

 */


static int rdrand_get_noise ( noise_sample_t *noise ) {

        unsigned int result;

        unsigned int discard_c;

        unsigned int ok;


        /* Issue RDRAND, retrying until CF is set */

        __asm__ ( "\n1:\n\t"

                  "rdrand %0\n\t"

                  "sbb %1, %1\n\t"

                  "loopz 1b\n\t"

                  : "=r" ( result ), "=r" ( ok ), "=c" ( discard_c )

                  : "2" ( RDRAND_RETRY_COUNT ) );

        if ( ! ok ) {

                DBGC ( colour, "RDRAND failed to become ready\n" );

                return -EBUSY;

        }


        *noise = result;

        return 0;

}


/** Hardware random number generator entropy source */

struct entropy_source rdrand_entropy __entropy_source ( ENTROPY_PREFERRED ) = {

        .name = "rdrand",

        .enable = rdrand_entropy_enable,

        .get_noise = rdrand_get_noise,

};

colour
#define colour
Colour for debug messages.
Definition acpi.c:42

result
uint16_t result
Definition hyperv.h:33

discard_c
long discard_c
Definition bigint.h:33

x86_features
void x86_features(struct x86_features *features)
Get x86 CPU features.
Definition cpuid.c:164

cpuid.h
x86 CPU feature detection

CPUID_FEATURES_INTEL_ECX_RDRAND
#define CPUID_FEATURES_INTEL_ECX_RDRAND
RDRAND instruction is supported.
Definition cpuid.h:47

drbg.h
DRBG mechanism.

DRBG_SECURITY_STRENGTH
#define DRBG_SECURITY_STRENGTH
Security strength.
Definition drbg.h:31

features
uint32_t features
Supported features.
Definition ena.h:5

errno.h
Error codes.

DBGC
#define DBGC(...)
Definition compiler.h:505

ENTROPY_PREFERRED
#define ENTROPY_PREFERRED
Preferred entropy source.
Definition entropy.h:180

FILE_LICENCE
#define FILE_LICENCE(_licence)
Declare a particular licence as applying to a file.
Definition compiler.h:896

EBUSY
#define EBUSY
Device or resource busy.
Definition errno.h:339

ENOTSUP
#define ENOTSUP
Operation not supported.
Definition errno.h:590

FILE_SECBOOT
#define FILE_SECBOOT(_status)
Declare a file's UEFI Secure Boot permission status.
Definition compiler.h:926

entropy.h
Entropy source.

entropy_init
static void entropy_init(struct entropy_source *source, min_entropy_t min_entropy_per_sample)
Initialise entropy source.
Definition entropy.h:490

MIN_ENTROPY
#define MIN_ENTROPY(bits)
Construct a min-entropy fixed-point value.
Definition entropy.h:43

noise_sample_t
uint8_t noise_sample_t
A noise sample.
Definition entropy.h:22

__entropy_source
#define __entropy_source(order)
Declare an entropy source.
Definition entropy.h:173

__asm__
__asm__(".section \".rodata\", \"a\", " PROGBITS "\n\t" "\nprivate_key_data:\n\t" ".size private_key_data, ( . - private_key_data )\n\t" ".equ private_key_len, ( . - private_key_data )\n\t" ".previous\n\t")

RDRAND_RETRY_COUNT
#define RDRAND_RETRY_COUNT
Number of times to retry RDRAND instruction.
Definition rdrand.c:41

rdrand_get_noise
static int rdrand_get_noise(noise_sample_t *noise)
Get noise sample.
Definition rdrand.c:78

rdrand_entropy_enable
static int rdrand_entropy_enable(void)
Enable entropy gathering.
Definition rdrand.c:51

entropy_source
An entropy source.
Definition entropy.h:117

x86_features
x86 CPU features
Definition cpuid.h:24

ok
#define ok(success)
Definition test.h:46