Received: by 2002:a25:1506:0:0:0:0:0 with SMTP id 6csp3806109ybv;
        Mon, 10 Feb 2020 06:45:49 -0800 (PST)
X-Google-Smtp-Source: APXvYqxjEUK+hR7HUY/SRUKiwM/j7MzJcU4A4UWEifHlbbPPPm8z+3vZSwMvW/xM9BUAUuj7P+S+
X-Received: by 2002:aca:f10:: with SMTP id 16mr986805oip.117.1581345949659;
        Mon, 10 Feb 2020 06:45:49 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1581345949; cv=none;
        d=google.com; s=arc-20160816;
        b=gwTTOwzNRwLpYpX3kuAHfANioeaT8qyA3i2KiYZLmlyuAHHRjWzYjchIxQfDOGbo5o
         hHOICl2Ff9US6C1DwpFbYZ3BMQd+4DHvNBEic0wZs1M3bTRJuRBolu5mmlorLpWyCniG
         acpdmtoxvHFtzsPxOVaivMWIkdtSHzUUv21cmDw2+3QkZGjqigdC4gwRo8NhDbDjEacA
         b5sUi9nnh7il+yhrWcIFCqLVDM1OVqOp1/ta/JOKEZTZ3FY9W62EzoawfDMlJYeImlS2
         CRd0f0bHyac2r9sdsaOMyYwZnasNKdA9+ZTWVpNXoKwZq2576xOcwg0SDhOIAqz0ELZS
         lJJg==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:sender:content-transfer-encoding:mime-version
         :message-id:date:subject:cc:to:from:dkim-signature;
        bh=AoC6oLn1iN9nAEM4B11m4EnisMnCyq2bdXkwzvNp36c=;
        b=RVsyowIHblzfh7f3xMDq5HsUNSH+gESQQjE8Wb6jLKwe5gzs9MRNuP6DYP07NVfi9m
         zE4x+CVuSJSYpa3L/DaZC99tUxqxnygQkfBgGDyJijMJphcdBOruri0VzSjXcrwORRfg
         Oc+CFJnieEEXth2FkX5Qn+s7E9mt+DYvkgcYYTSbaQ+EhwHk3L7wDA16B+XVri3Omt7v
         5xsnXtf9Om52DFNIlvTTg8DlVsYdWjzuazdnU79UA1nosDb0YERgBUuofwril4qn6Wtn
         M/XbP9ZeiK3rzdqqnwuxnTfICVQQ3eSB57BwXXY9k+Q8l1qV3Ozc+0YtbLRJmoQaI6MO
         EO7g==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@android.com header.s=20161025 header.b=e6+c4MRo;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=android.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67])
        by mx.google.com with ESMTP id x2si313846otk.29.2020.02.10.06.45.36;
        Mon, 10 Feb 2020 06:45:49 -0800 (PST)
Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@android.com header.s=20161025 header.b=e6+c4MRo;
       spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=android.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1728073AbgBJOp3 (ORCPT <rfc822;7819ynot@gmail.com> + 99 others);
        Mon, 10 Feb 2020 09:45:29 -0500
Received: from mail-pg1-f193.google.com ([209.85.215.193]:37362 "EHLO
        mail-pg1-f193.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1727411AbgBJOp3 (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Mon, 10 Feb 2020 09:45:29 -0500
Received: by mail-pg1-f193.google.com with SMTP id z12so4033585pgl.4
        for <linux-kernel@vger.kernel.org>; Mon, 10 Feb 2020 06:45:27 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=android.com; s=20161025;
        h=from:to:cc:subject:date:message-id:mime-version
         :content-transfer-encoding;
        bh=AoC6oLn1iN9nAEM4B11m4EnisMnCyq2bdXkwzvNp36c=;
        b=e6+c4MRotQlIlu/VHkezDMBYJX1/ZntF5pE9VwiOcSLxcpPcryDxRTgwjK/ptX2sZv
         LBDhDetYzW+4Z4d8dGkJzlA2TwdJotNQCxS2fQCHayLykVo8l3wAY0o2ATl9Y9g+3AOk
         kQ1/uD4zYT0qz6DR3jwmGqIvwE3t+i9kjfhe6aEXTAWzGd3RWJI9OjNNGU3O2clJ596g
         ArbvoO0mrJfcZc39E+qoUSnlcy08ENMtwhGnSWT+RZuAmUHnwYD1ldGQIdOVhHzaf2rb
         lBtrI7M1fKmSme3mrpABjmQwDIHrcYBovYaCkck2Ai7dcoaE0YeLFxZdo9f3ybZ4biRV
         IfMQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:from:to:cc:subject:date:message-id:mime-version
         :content-transfer-encoding;
        bh=AoC6oLn1iN9nAEM4B11m4EnisMnCyq2bdXkwzvNp36c=;
        b=JrzJhiBWImtQmilwvXY8jYAQk0Y7/5/Mm2JDNGQ2RW6mcYLPyLUG1JNqSzE3pmAzya
         9D/U35VcBPKctJV4Xigw0HiSQB7LNyG5ij6A1wZU5hYE8HVuUP+ZDm6zR4Y3p1lI0X1w
         LiU++wAqmTDg0/XQLNt+HE3Z+or5P1SMksM48iRvFjX7sOcP+IIYNQ6wsde1aCOwYUfM
         uh+exc6ZPOQf/TC3IPAe2j7p6TZHovWM1T7muCAokTdISwrojUNF/D711KZdEztKSl6j
         gFjRHqEd17YGkdt7cGqQKyP1WiQJ5gYTotbCi9SM/DAVJlzIBhnyopDxEHYnTJoPBDCm
         x7Jg==
X-Gm-Message-State: APjAAAXIIWWWrzfqF/5OA8a6ArlLvfYrI587FBtz0b3U05EOTpaBBvR3
        6bISON6XdU1a81+G2TshgVjU/RgJx5g=
X-Received: by 2002:a65:420b:: with SMTP id c11mr2013833pgq.306.1581345926732;
        Mon, 10 Feb 2020 06:45:26 -0800 (PST)
Received: from nebulus.mtv.corp.google.com ([2620:15c:211:200:5404:91ba:59dc:9400])
        by smtp.gmail.com with ESMTPSA id dw10sm552079pjb.11.2020.02.10.06.45.26
        (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
        Mon, 10 Feb 2020 06:45:26 -0800 (PST)
From:   Mark Salyzyn <salyzyn@android.com>
To:     linux-kernel@vger.kernel.org
Cc:     kernel-team@android.com, Mark Salyzyn <salyzyn@android.com>
Subject: [PATCH 0/4 v2] random add rng-seed to command line option
Date:   Mon, 10 Feb 2020 06:45:01 -0800
Message-Id: <20200210144512.180348-1-salyzyn@android.com>
X-Mailer: git-send-email 2.25.0.341.g760bfbb309-goog
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Sender: linux-kernel-owner@vger.kernel.org
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

A followup to commit 428826f5358c922dc378830a1717b682c0823160
("fdt: add support for rng-seed") to extend what was started
with Open Firmware (OF or Device Tree) parsing, but also add
it to the command line.

If CONFIG_RANDOM_TRUST_BOOTLOADER is set, then feed the rng-seed
command line option length as added trusted entropy.

Always erase all views of the rng-seed option, except early command
line parsing, to prevent leakage to applications or modules, to
eliminate any attack vector.

It is preferred to add rng-seed to the Device Tree, but some
platforms do not have this option, so this adds the ability to
provide some command-line-limited data to the entropy through this
alternate mechanism.  Expect on average 6 bits of useful entropy
per character.

Mark Salyzyn (4):
  init: move string constants to __initconst section
  init: boot_command_line can be truncated
  random: rng-seed source is utf-8
  random: add rng-seed= command line option

---
v2
- Split into four bite sized patches.
- Correct spelling in commit message.
- rng-seed is assumed to be utf-8, so correct both to 6 bits/character
  of collected entropy.
- Move entropy collection to a static __always_inline helper function.

 drivers/char/random.c  |  10 +++-
 include/linux/random.h |   5 ++
 init/main.c            | 115 ++++++++++++++++++++++++++++++-----------
 3 files changed, 100 insertions(+), 30 deletions(-)

-- 
2.25.0.341.g760bfbb309-goog