Received: by 2002:a25:1985:0:0:0:0:0 with SMTP id 127csp930778ybz; Fri, 17 Apr 2020 12:36:05 -0700 (PDT) X-Google-Smtp-Source: APiQypJETBueMODCnY0HWwPJd7TBo6gXxmzaf+pU6YlbpZPTiK0J8WogwKf5F5+0FMrJbdvuOhO7 X-Received: by 2002:a17:906:35cd:: with SMTP id p13mr4812968ejb.206.1587152165481; Fri, 17 Apr 2020 12:36:05 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1587152165; cv=none; d=google.com; s=arc-20160816; b=kGncjjyd2FYX8wWqcp2jCyxaMZWMpY+VlafNcY4ei2xqyp9ljFK+6ImG4VYSipIzkC qs8QkcQ9/BpwqN9ZjnIkpeeaofVjmQIn1uzIhhCf8VNab+Xo4IuoFlCzd4XCf3ntoNn1 NOYymmNrNTh86ZYPXY0s3lDzwLxrjU4yNIvAHV5XyAqgsN/xmnQqTWw0inNXPBuyviHr uu3lxI964lBTIUt7bDleG9cJz5bEXNOaZavGGeBaV/HumCtiqbGe/l/TXWcyTNJv0h8z UXldwcNmeKxMzBTyvh4iLkEt42Yn+v4fjgIPZfj1iWAvcmliSI1fE2bitN4gIQwZQpv2 RW8w== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:content-transfer-encoding:mime-version :message-id:date:subject:cc:to:from:dkim-signature; bh=EHF/kfyL9LlzhTxumK5rG0T7SN+xJ1x8ujKUesmqFmI=; b=jVQIesXeTYzo4Q4WGGYMUkHs0MaCMClPYNzsdN/d1eUti8eXCmM2DnkwKdwmk31UP5 8ZCGbevLdicS6UzxPJUUPxVWYM5QiSqRCw/LCe3ES+ud0/WwRESwwuMKr7wrPRmfOJ+y v8a/WlGGbSBqzPrjpY4Z0OyD2b9niyFuML4UMMhnMRHkvxftRVSnUgNibZwazMtmNnEt js918ePiWWTfWMfu60tPYQ/wcK4QuVAlBvhNRaim8L8QfrOM5c5mrcUJbLv+v3RBb/8B Bz9N2jMO9kKyyJjbF/8dYldjTQNwSsSkpzhDOZ/TiqwUWGFEpW9S4PHivA3T+h38LkEk Y8Ww== ARC-Authentication-Results: i=1; mx.google.com; dkim=fail header.i=@chronox.de header.s=strato-dkim-0002 header.b=pzh2TeAg; spf=pass (google.com: domain of linux-crypto-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-crypto-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id j8si13841704ejt.348.2020.04.17.12.35.40; Fri, 17 Apr 2020 12:36:05 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-crypto-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=fail header.i=@chronox.de header.s=strato-dkim-0002 header.b=pzh2TeAg; spf=pass (google.com: domain of linux-crypto-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-crypto-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1730413AbgDQTfI (ORCPT + 99 others); Fri, 17 Apr 2020 15:35:08 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:54564 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1730524AbgDQTfH (ORCPT ); Fri, 17 Apr 2020 15:35:07 -0400 Received: from mo6-p01-ob.smtp.rzone.de (mo6-p01-ob.smtp.rzone.de [IPv6:2a01:238:20a:202:5301::8]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 0D816C061A10 for ; Fri, 17 Apr 2020 12:35:06 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; t=1587152105; s=strato-dkim-0002; d=chronox.de; h=Message-ID:Date:Subject:Cc:To:From:X-RZG-CLASS-ID:X-RZG-AUTH:From: Subject:Sender; bh=EHF/kfyL9LlzhTxumK5rG0T7SN+xJ1x8ujKUesmqFmI=; b=pzh2TeAg45iTi/AYMXGhOxt+ydI4leCn6MI786ECeXAuZhG6ofFtE/GMLneZBahaCe mLNEH7cCsbyvaUzzNIcTPKzUvNCk3pJmDyVVbPrXkDPMgUyp751/Q+uMAQk4TABtzQtU vBUulPCc65veDeqlHp8I8v5WY676wSOixr41qKAWUx9BMOT/DAk9g1ag5adMpTCn3O/K f67MDCxHEjTP3V/kEb4Quw6ACm5wCibhtmUCZILddVs0h/eJnnei88bAY0xAb9A3p2LX mZ/dDj/8WzTVZ2MP/jXGphXFAlH0v8+8nQR3reflRIYVIYHALZN0e8sFiBz0AHVldh1I ZwrQ== X-RZG-AUTH: ":P2ERcEykfu11Y98lp/T7+hdri+uKZK8TKWEqNyiHySGSa9k9xmwdNnzGHXPZJfSf//ci" X-RZG-CLASS-ID: mo00 Received: from positron.chronox.de by smtp.strato.de (RZmta 46.5.0 DYNA|AUTH) with ESMTPSA id c09283w3HJZ53Ay (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256 bits)) (Client did not present a certificate); Fri, 17 Apr 2020 21:35:05 +0200 (CEST) From: Stephan =?ISO-8859-1?Q?M=FCller?= To: herbert@gondor.apana.org.au Cc: linux-crypto@vger.kernel.org Subject: [PATCH v2 0/2] crypto: Jitter RNG SP800-90B compliance Date: Fri, 17 Apr 2020 21:32:53 +0200 Message-ID: <9339058.MEWKF1lRGI@positron.chronox.de> MIME-Version: 1.0 Content-Transfer-Encoding: 7Bit Content-Type: text/plain; charset="us-ascii" Sender: linux-crypto-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-crypto@vger.kernel.org Hi, This patch set adds SP800-90B compliance to the Jitter RNG. The SP800-90B patch is tested for more than half a year in user space with the Jitter RNG version 2.2.0. The full SP800-90B assessment of the Jitter RNG is provided at [1]. In addition, the DRBG implementation is updated to always be reseeded from the Jitter RNG. To ensure the DRBG is reseeded within an appropriate amount of time, the reseed threshold is lowered. Changes v2: * Instead of free/alloc of the Jitter RNG instance in case of a health test error, re-initialize the RNG instance by performing the power-up test and after a success, clear the health test status and error. [1] http://www.chronox.de/jent/doc/CPU-Jitter-NPTRNG.pdf Stephan Mueller (2): crypto: Jitter RNG SP800-90B compliance crypto: DRBG always seeded with SP800-90B compliant noise source crypto/drbg.c | 26 ++- crypto/jitterentropy-kcapi.c | 27 +++ crypto/jitterentropy.c | 417 ++++++++++++++++++++++++++--------- include/crypto/drbg.h | 6 +- 4 files changed, 363 insertions(+), 113 deletions(-) -- 2.25.2