rdrand_8c_source.html

 /*
  * Copyright (C) 2023 Michael Brown <mbrown@fensystems.co.uk>.
  *
  * This program is free software; you can redistribute it and/or
  * modify it under the terms of the GNU General Public License as
  * published by the Free Software Foundation; either version 2 of the
  * License, or any later version.
  *
  * This program is distributed in the hope that it will be useful, but
  * WITHOUT ANY WARRANTY; without even the implied warranty of
  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
  * General Public License for more details.
  *
  * You should have received a copy of the GNU General Public License
  * along with this program; if not, write to the Free Software
  * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA
  * 02110-1301, USA.
  *
  * You can also choose to distribute this program under the terms of
  * the Unmodified Binary Distribution Licence (as given in the file
  * COPYING.UBDL), provided that you have satisfied its requirements.
  */

 FILE_LICENCE ( GPL2_OR_LATER_OR_UBDL );
 FILE_SECBOOT ( PERMITTED );

 /** @file
  *
  * Hardware random number generator
  *
  */

 #include <errno.h>
 #include <ipxe/cpuid.h>
 #include <ipxe/entropy.h>
 #include <ipxe/drbg.h>

 struct entropy_source rdrand_entropy __entropy_source ( ENTROPY_PREFERRED );

 /** Number of times to retry RDRAND instruction */
 #define RDRAND_RETRY_COUNT 16

 /** Colour for debug messages */
 #define colour &rdrand_entropy

 /**
  * Enable entropy gathering
  *
  * @ret rc              Return status code
  */
 static int rdrand_entropy_enable ( void ) {
         struct x86_features features;

         /* Check that RDRAND is supported */
         x86_features ( &features );
         if ( ! ( features.intel.ecx & CPUID_FEATURES_INTEL_ECX_RDRAND ) ) {
                 DBGC ( colour, "RDRAND not supported\n" );
                 return -ENOTSUP;
         }

         /* Data returned by RDRAND is theoretically full entropy, up
          * to a security strength of 128 bits, so assume that each
          * sample contains exactly 8 bits of entropy.
          */
         if ( DRBG_SECURITY_STRENGTH > 128 )
                 return -ENOTSUP;
         entropy_init ( &rdrand_entropy, MIN_ENTROPY ( 8.0 ) );

         return 0;
 }

 /**
  * Get noise sample
  *
  * @ret noise           Noise sample
  * @ret rc              Return status code
  */
 static int rdrand_get_noise ( noise_sample_t *noise ) {
         unsigned int result;
         unsigned int discard_c;
         unsigned int ok;

         /* Issue RDRAND, retrying until CF is set */
         __asm__ ( "\n1:\n\t"
                   "rdrand %0\n\t"
                   "sbb %1, %1\n\t"
                   "loopz 1b\n\t"
                   : "=r" ( result ), "=r" ( ok ), "=c" ( discard_c )
                   : "2" ( RDRAND_RETRY_COUNT ) );
         if ( ! ok ) {
                 DBGC ( colour, "RDRAND failed to become ready\n" );
                 return -EBUSY;
         }

         *noise = result;
         return 0;
 }

 /** Hardware random number generator entropy source */
 struct entropy_source rdrand_entropy __entropy_source ( ENTROPY_PREFERRED ) = {
         .name = "rdrand",
         .enable = rdrand_entropy_enable,
         .get_noise = rdrand_get_noise,
 };
EBUSY
#define EBUSY
Device or resource busy.
Definition: errno.h:339

drbg.h
DRBG mechanism.

errno.h
Error codes.

RDRAND_RETRY_COUNT
#define RDRAND_RETRY_COUNT
Number of times to retry RDRAND instruction.
Definition: rdrand.c:41

colour
#define colour
Colour for debug messages.
Definition: rdrand.c:44

DBGC
#define DBGC(...)
Definition: compiler.h:505

x86_features
void x86_features(struct x86_features *features)
Get x86 CPU features.
Definition: cpuid.c:164

x86_features
x86 CPU features
Definition: cpuid.h:24

entropy_source
An entropy source.
Definition: entropy.h:117

ENOTSUP
#define ENOTSUP
Operation not supported.
Definition: errno.h:590

entropy_source::name
const char * name
Name.
Definition: entropy.h:119

cpuid.h
x86 CPU feature detection

FILE_LICENCE
FILE_LICENCE(GPL2_OR_LATER_OR_UBDL)

features
uint32_t features
Supported features.
Definition: ena.h:16

FILE_SECBOOT
FILE_SECBOOT(PERMITTED)

MIN_ENTROPY
#define MIN_ENTROPY(bits)
Construct a min-entropy fixed-point value.
Definition: entropy.h:43

rdrand_entropy_enable
static int rdrand_entropy_enable(void)
Enable entropy gathering.
Definition: rdrand.c:51

result
uint16_t result
Definition: hyperv.h:33

__entropy_source
struct entropy_source rdrand_entropy __entropy_source(ENTROPY_PREFERRED)
Hardware random number generator entropy source.

__asm__
__asm__(".section \".rodata\", \"a\", " PROGBITS "\n\t" "\nprivate_key_data:\n\t" ".size private_key_data, ( . - private_key_data )\n\t" ".equ private_key_len, ( . - private_key_data )\n\t" ".previous\n\t")

noise_sample_t
uint8_t noise_sample_t
A noise sample.
Definition: entropy.h:22

rdrand_get_noise
static int rdrand_get_noise(noise_sample_t *noise)
Get noise sample.
Definition: rdrand.c:78

discard_c
long discard_c
Definition: bigint.h:33

DRBG_SECURITY_STRENGTH
#define DRBG_SECURITY_STRENGTH
Security strength.
Definition: drbg.h:31

ENTROPY_PREFERRED
#define ENTROPY_PREFERRED
Preferred entropy source.
Definition: entropy.h:180

entropy_init
static void entropy_init(struct entropy_source *source, min_entropy_t min_entropy_per_sample)
Initialise entropy source.
Definition: entropy.h:490

ok
#define ok(success)
Definition: test.h:46

entropy.h
Entropy source.

CPUID_FEATURES_INTEL_ECX_RDRAND
#define CPUID_FEATURES_INTEL_ECX_RDRAND
RDRAND instruction is supported.
Definition: cpuid.h:47