R0dn3yS/android_kernel_xiaomi_sm7250
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
lineage-20.0
android_kernel_xiaomi_sm7250/drivers/char/lrng/lrng_definitions.h

151 lines
5.0 KiB
C
Raw Permalink Normal View History

lrng: merge v45 Signed-off-by: Juhyung Park <qkrwngud825@gmail.com> Signed-off-by: UtsavBalar1231 <utsavbalar1231@gmail.com>
2022-06-07 11:04:06 +02:00
/* SPDX-License-Identifier: GPL-2.0 OR BSD-2-Clause */
/*
* Copyright (C) 2022, Stephan Mueller <smueller@chronox.de>
*/
#ifndef _LRNG_DEFINITIONS_H
#define _LRNG_DEFINITIONS_H
#include <crypto/sha.h>
#include <linux/slab.h>
/*************************** General LRNG parameter ***************************/
/*
* Specific settings for different use cases
*/
#ifdef CONFIG_CRYPTO_FIPS
# define LRNG_OVERSAMPLE_ES_BITS 64
# define LRNG_SEED_BUFFER_INIT_ADD_BITS 128
#else /* CONFIG_CRYPTO_FIPS */
# define LRNG_OVERSAMPLE_ES_BITS 0
# define LRNG_SEED_BUFFER_INIT_ADD_BITS 0
#endif /* CONFIG_CRYPTO_FIPS */
/* Security strength of LRNG -- this must match DRNG security strength */
#define LRNG_DRNG_SECURITY_STRENGTH_BYTES 32
#define LRNG_DRNG_SECURITY_STRENGTH_BITS (LRNG_DRNG_SECURITY_STRENGTH_BYTES * 8)
#define LRNG_DRNG_INIT_SEED_SIZE_BITS \
(LRNG_DRNG_SECURITY_STRENGTH_BITS + LRNG_SEED_BUFFER_INIT_ADD_BITS)
#define LRNG_DRNG_INIT_SEED_SIZE_BYTES (LRNG_DRNG_INIT_SEED_SIZE_BITS >> 3)
/*
* SP800-90A defines a maximum request size of 1<<16 bytes. The given value is
* considered a safer margin.
*
* This value is allowed to be changed.
*/
#define LRNG_DRNG_MAX_REQSIZE (1<<12)
/*
* SP800-90A defines a maximum number of requests between reseeds of 2^48.
* The given value is considered a much safer margin, balancing requests for
* frequent reseeds with the need to conserve entropy. This value MUST NOT be
* larger than INT_MAX because it is used in an atomic_t.
*
* This value is allowed to be changed.
*/
#define LRNG_DRNG_RESEED_THRESH (1<<20)
/*
* Maximum DRNG generation operations without reseed having full entropy
* This value defines the absolute maximum value of DRNG generation operations
* without a reseed holding full entropy. LRNG_DRNG_RESEED_THRESH is the
* threshold when a new reseed is attempted. But it is possible that this fails
* to deliver full entropy. In this case the DRNG will continue to provide data
* even though it was not reseeded with full entropy. To avoid in the extreme
* case that no reseed is performed for too long, this threshold is enforced.
* If that absolute low value is reached, the LRNG is marked as not operational.
*
* This value is allowed to be changed.
*/
#define LRNG_DRNG_MAX_WITHOUT_RESEED (1<<30)
/*
* Min required seed entropy is 128 bits covering the minimum entropy
* requirement of SP800-131A and the German BSI's TR02102.
*
* This value is allowed to be changed.
*/
#define LRNG_FULL_SEED_ENTROPY_BITS LRNG_DRNG_SECURITY_STRENGTH_BITS
#define LRNG_MIN_SEED_ENTROPY_BITS 128
#define LRNG_INIT_ENTROPY_BITS 32
/*
* Wakeup value
*
* This value is allowed to be changed but must not be larger than the
* digest size of the hash operation used update the aux_pool.
*/
#ifdef CONFIG_LRNG_SHA256
# define LRNG_ATOMIC_DIGEST_SIZE SHA256_DIGEST_SIZE
#else
# define LRNG_ATOMIC_DIGEST_SIZE SHA1_DIGEST_SIZE
#endif
#define LRNG_WRITE_WAKEUP_ENTROPY LRNG_ATOMIC_DIGEST_SIZE
/*
* If the switching support is configured, we must provide support up to
* the largest digest size. Without switching support, we know it is only
* the built-in digest size.
*/
#ifdef CONFIG_LRNG_SWITCH
# define LRNG_MAX_DIGESTSIZE 64
#else
# define LRNG_MAX_DIGESTSIZE LRNG_ATOMIC_DIGEST_SIZE
#endif
/*
* Oversampling factor of timer-based events to obtain
* LRNG_DRNG_SECURITY_STRENGTH_BYTES. This factor is used when a
* high-resolution time stamp is not available. In this case, jiffies and
* register contents are used to fill the entropy pool. These noise sources
* are much less entropic than the high-resolution timer. The entropy content
* is the entropy content assumed with LRNG_[IRQ|SCHED]_ENTROPY_BITS divided by
* LRNG_ES_OVERSAMPLING_FACTOR.
*
* This value is allowed to be changed.
*/
#define LRNG_ES_OVERSAMPLING_FACTOR 10
/* Alignmask that is intended to be identical to CRYPTO_MINALIGN */
#define LRNG_KCAPI_ALIGN ARCH_KMALLOC_MINALIGN
/*
* This definition must provide a buffer that is equal to SHASH_DESC_ON_STACK
* as it will be casted into a struct shash_desc.
*/
#define LRNG_POOL_SIZE (sizeof(struct shash_desc) + HASH_MAX_DESCSIZE)
/****************************** Helper code ***********************************/
static inline u32 lrng_fast_noise_entropylevel(u32 ent_bits, u32 requested_bits)
{
/* Obtain entropy statement */
ent_bits = ent_bits * requested_bits / LRNG_DRNG_SECURITY_STRENGTH_BITS;
/* Cap entropy to buffer size in bits */
ent_bits = min_t(u32, ent_bits, requested_bits);
return ent_bits;
}
/* Convert entropy in bits into nr. of events with the same entropy content. */
static inline u32 lrng_entropy_to_data(u32 entropy_bits, u32 entropy_rate)
{
return ((entropy_bits * entropy_rate) /
LRNG_DRNG_SECURITY_STRENGTH_BITS);
}
/* Convert number of events into entropy value. */
static inline u32 lrng_data_to_entropy(u32 num, u32 entropy_rate)
{
return ((num * LRNG_DRNG_SECURITY_STRENGTH_BITS) /
entropy_rate);
}
static inline u32 atomic_read_u32(atomic_t *v)
{
return (u32)atomic_read(v);
}
#endif /* _LRNG_DEFINITIONS_H */
Reference in New Issue Copy Permalink