Received: by 2002:ad5:4acb:0:0:0:0:0 with SMTP id n11csp2700265imw;
        Sun, 17 Jul 2022 15:03:49 -0700 (PDT)
X-Google-Smtp-Source: AGRyM1s+rN7lc//a65LbfE0bxN/+N8vL1J0KHUvqvfznvPSFz5bSTgy1cTj/cP3lcqLSZFG5XpJD
X-Received: by 2002:a05:6402:50d2:b0:43a:8487:8a09 with SMTP id h18-20020a05640250d200b0043a84878a09mr33395734edb.232.1658095428894;
        Sun, 17 Jul 2022 15:03:48 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; t=1658095428; cv=none;
        d=google.com; s=arc-20160816;
        b=uYZr+FcYNW8vw6FPoJV13Ml27fJcLe5t9EM8ql0Y6ZjQ6XjmCoIrOgnbJ0DT6+b+ax
         onSt4slJb2kKH/jtHGQlBGjDwyf9ow34sAr9+iWsDe9BWERfEQmmT0zwiwKAttWxwREZ
         1x7Q+6muXjNrCdaBUbQeqbWGkfAOiUFf0JnwrN/wL8FeaCShZeW+h0LLXUTgytDkmn5K
         oLTvyx4g3uXchOnxwnJ/semsqW3Yk/Oa4Ujkgw+DImPUTYi+pepnWNfQNIFHNBcs15g5
         Z6HrUx+DKiG94v9wdhkMePGHhL2ynYfX+RwyLsKo7zCScEGj0W0QTgKTlP/NnEtSaJwn
         DpHw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:content-transfer-encoding:mime-version
         :references:in-reply-to:message-id:date:subject:cc:to:from
         :dkim-signature;
        bh=Ny84T9MsouS8xlPpZE0UKru4/DgwDfAXAKuzjKR6LbU=;
        b=DSFXVG3mm17q5obQBlSyQX98ws/h4bWeMx8cFZrx+sNU4/DbcOeJrf6X/HhNqcQu07
         0PXTKbHR+U2WYnNsFAemDvnPmrBV8HUkMIedNuAKXgkS3JnSQxbzbPWUIqi9UNCALumm
         O9x/hkiT3ngWrRt547Q3glcg2fc8NWGwTihj43lNAAMdjXVwgrXAdcYiT2L2/LaViHl0
         LVx0MGBEP0zlo5NRcseEbgUg39NnRPuHlH4kCi1V29QiY1HcKmb6rAQXM9Up6OKHQkJL
         B96wTkSNgu4JznQZTGRQybnI0m+ygJWmwIWqd/XqKd/J5SQHluyUPUtyJg9/Mg/LUYhr
         9vlw==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@zx2c4.com header.s=20210105 header.b=iEuuU2sQ;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=QUARANTINE sp=QUARANTINE dis=NONE) header.from=zx2c4.com
Return-Path: <linux-kernel-owner@vger.kernel.org>
Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20])
        by mx.google.com with ESMTP id dd18-20020a1709069b9200b0072b132aeec5si15430702ejc.648.2022.07.17.15.03.22;
        Sun, 17 Jul 2022 15:03:48 -0700 (PDT)
Received-SPF: pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@zx2c4.com header.s=20210105 header.b=iEuuU2sQ;
       spf=pass (google.com: domain of linux-kernel-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org;
       dmarc=pass (p=QUARANTINE sp=QUARANTINE dis=NONE) header.from=zx2c4.com
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S233033AbiGQVx6 (ORCPT <rfc822;algowarbles@gmail.com>
        + 99 others); Sun, 17 Jul 2022 17:53:58 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:33950 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S232806AbiGQVx5 (ORCPT
        <rfc822;linux-kernel@vger.kernel.org>);
        Sun, 17 Jul 2022 17:53:57 -0400
Received: from sin.source.kernel.org (sin.source.kernel.org [IPv6:2604:1380:40e1:4800::1])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 6A15BCC7;
        Sun, 17 Jul 2022 14:53:56 -0700 (PDT)
Received: from smtp.kernel.org (relay.kernel.org [52.25.139.140])
        (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
        (No client certificate requested)
        by sin.source.kernel.org (Postfix) with ESMTPS id A5E97CE112B;
        Sun, 17 Jul 2022 21:53:54 +0000 (UTC)
Received: by smtp.kernel.org (Postfix) with ESMTPSA id 76D43C341C0;
        Sun, 17 Jul 2022 21:53:52 +0000 (UTC)
Authentication-Results: smtp.kernel.org;
        dkim=pass (1024-bit key) header.d=zx2c4.com header.i=@zx2c4.com header.b="iEuuU2sQ"
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=zx2c4.com; s=20210105;
        t=1658094830;
        h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
         to:to:cc:cc:mime-version:mime-version:
         content-transfer-encoding:content-transfer-encoding:
         in-reply-to:in-reply-to:references:references;
        bh=Ny84T9MsouS8xlPpZE0UKru4/DgwDfAXAKuzjKR6LbU=;
        b=iEuuU2sQnrUZVRJlvE+kuRoL7HDSk5iViUpaISQ5BIpdu1qTSay3i8KbOkdmV/fx1OQWUm
        OhN78RveXyQBlqelblWF7O/SPPmO3KVRkFsek/Tqp53Rb/HvznkQzxnsFd6gSl1Xhy0AOo
        9pVGOGGl3qI/6ATbfPbTmzW8WqrRBmc=
Received: by mail.zx2c4.com (ZX2C4 Mail Server) with ESMTPSA id cf6e9676 (TLSv1.3:AEAD-AES256-GCM-SHA384:256:NO);
        Sun, 17 Jul 2022 21:53:50 +0000 (UTC)
From:   "Jason A. Donenfeld" <Jason@zx2c4.com>
To:     tglx@linutronix.de, linux-kernel@vger.kernel.org
Cc:     "Jason A. Donenfeld" <Jason@zx2c4.com>, stable@vger.kernel.org,
        Eric Biggers <ebiggers@google.com>
Subject: [PATCH v4 RESEND] timekeeping: contribute wall clock to rng on time change
Date:   Sun, 17 Jul 2022 23:53:34 +0200
Message-Id: <20220717215334.221236-1-Jason@zx2c4.com>
In-Reply-To: <Yr2f13QhFsyxdDS7@zx2c4.com>
References: <Yr2f13QhFsyxdDS7@zx2c4.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
X-Spam-Status: No, score=-6.8 required=5.0 tests=BAYES_00,DKIM_SIGNED,
        DKIM_VALID,DKIM_VALID_AU,HEADER_FROM_DIFFERENT_DOMAINS,
        RCVD_IN_DNSWL_HI,SPF_HELO_NONE,SPF_PASS autolearn=ham
        autolearn_force=no version=3.4.6
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on
        lindbergh.monkeyblade.net
Precedence: bulk
List-ID: <linux-kernel.vger.kernel.org>
X-Mailing-List: linux-kernel@vger.kernel.org

The rng's random_init() function contributes the real time to the rng at
boot time, so that events can at least start in relation to something
particular in the real world. But this clock might not yet be set that
point in boot, so nothing is contributed. In addition, the relation
between minor clock changes from, say, NTP, and the cycle counter is
potentially useful entropic data.

This commit addresses this by mixing in a time stamp on calls to
settimeofday and adjtimex. No entropy is credited in doing so, so it
doesn't make initialization faster, but it is still useful input to
have.

Fixes: 1da177e4c3f4 ("Linux-2.6.12-rc2")
Cc: stable@vger.kernel.org
Reviewed-by: Eric Biggers <ebiggers@google.com>
Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
---
 kernel/time/timekeeping.c | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/kernel/time/timekeeping.c b/kernel/time/timekeeping.c
index 8e4b3c32fcf9..f72b9f1de178 100644
--- a/kernel/time/timekeeping.c
+++ b/kernel/time/timekeeping.c
@@ -23,6 +23,7 @@
 #include <linux/pvclock_gtod.h>
 #include <linux/compiler.h>
 #include <linux/audit.h>
+#include <linux/random.h>
 
 #include "tick-internal.h"
 #include "ntp_internal.h"
@@ -1343,8 +1344,10 @@ int do_settimeofday64(const struct timespec64 *ts)
 	/* Signal hrtimers about time change */
 	clock_was_set(CLOCK_SET_WALL);
 
-	if (!ret)
+	if (!ret) {
 		audit_tk_injoffset(ts_delta);
+		add_device_randomness(ts, sizeof(*ts));
+	}
 
 	return ret;
 }
@@ -2430,6 +2433,7 @@ int do_adjtimex(struct __kernel_timex *txc)
 	ret = timekeeping_validate_timex(txc);
 	if (ret)
 		return ret;
+	add_device_randomness(txc, sizeof(*txc));
 
 	if (txc->modes & ADJ_SETOFFSET) {
 		struct timespec64 delta;
@@ -2447,6 +2451,7 @@ int do_adjtimex(struct __kernel_timex *txc)
 	audit_ntp_init(&ad);
 
 	ktime_get_real_ts64(&ts);
+	add_device_randomness(&ts, sizeof(ts));
 
 	raw_spin_lock_irqsave(&timekeeper_lock, flags);
 	write_seqcount_begin(&tk_core.seq);
-- 
2.35.1