kris
/
pqcrypto
miroir de https://github.com/henrydcase/pqc.git
1
1
Bifurcation 0
Code Tickets 1 Versions 2 Wiki Activité
Vous ne pouvez pas sélectionner plus de 25 sujets Les noms de sujets doivent commencer par une lettre ou un nombre, peuvent contenir des tirets ('-') et peuvent comporter jusqu'à 35 caractères.
1131 Révisions
9 Branches
73 MiB
 
 
 
Aborescence: e7b5cfe9f8
Branches Tags
${ item.name }
Créer la branche ${ searchTerm }
de 'e7b5cfe9f8'
${ noResults }
pqcrypto/3rd/jitterentropy/jitterentropy-timer.c

234 lignes
6.0 KiB
Brut Annotations Historique 

  1. /* Jitter RNG: Internal timer implementation

  2.  *

  3.  * Copyright (C) 2021 - 2022, Stephan Mueller <smueller@chronox.de>

  4.  *

  5.  * License: see LICENSE file in root directory

  6.  *

  7.  * THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED

  8.  * WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES

  9.  * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE, ALL OF

  10.  * WHICH ARE HEREBY DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR BE

  11.  * LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR

  12.  * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT

  13.  * OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR

  14.  * BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF

  15.  * LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT

  16.  * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE

  17.  * USE OF THIS SOFTWARE, EVEN IF NOT ADVISED OF THE POSSIBILITY OF SUCH

  18.  * DAMAGE.

  19.  */

  20. 

  21. #include "jitterentropy-base.h"

  22. #include "jitterentropy-timer.h"

  23. 

  24. #ifdef JENT_CONF_ENABLE_INTERNAL_TIMER

  25. /***************************************************************************

  26.  * Thread handler

  27.  ***************************************************************************/

  28. 

  29. JENT_PRIVATE_STATIC

  30. int jent_notime_init(void **ctx)

  31. {

  32. 	struct jent_notime_ctx *thread_ctx;

  33. 	long ncpu = jent_ncpu();

  34. 

  35. 	if (ncpu < 0)

  36. 		return (int)ncpu;

  37. 

  38. 	/* We need at least two CPUs to enable the timer thread */

  39. 	if (ncpu < 2)

  40. 		return -EOPNOTSUPP;

  41. 

  42. 	thread_ctx = calloc(1, sizeof(struct jent_notime_ctx));

  43. 	if (!thread_ctx)

  44. 		return -errno;

  45. 

  46. 	*ctx = thread_ctx;

  47. 

  48. 	return 0;

  49. }

  50. 

  51. JENT_PRIVATE_STATIC

  52. void jent_notime_fini(void *ctx)

  53. {

  54. 	struct jent_notime_ctx *thread_ctx = (struct jent_notime_ctx *)ctx;

  55. 

  56. 	if (thread_ctx)

  57. 		free(thread_ctx);

  58. }

  59. 

  60. static int jent_notime_start(void *ctx,

  61. 			     void *(*start_routine) (void *), void *arg)

  62. {

  63. 	struct jent_notime_ctx *thread_ctx = (struct jent_notime_ctx *)ctx;

  64. 	int ret;

  65. 

  66. 	if (!thread_ctx)

  67. 		return -EINVAL;

  68. 

  69. 	ret = -pthread_attr_init(&thread_ctx->notime_pthread_attr);

  70. 	if (ret)

  71. 		return ret;

  72. 

  73. 	return -pthread_create(&thread_ctx->notime_thread_id,

  74. 			       &thread_ctx->notime_pthread_attr,

  75. 			       start_routine, arg);

  76. }

  77. 

  78. static void jent_notime_stop(void *ctx)

  79. {

  80. 	struct jent_notime_ctx *thread_ctx = (struct jent_notime_ctx *)ctx;

  81. 

  82. 	pthread_join(thread_ctx->notime_thread_id, NULL);

  83. 	pthread_attr_destroy(&thread_ctx->notime_pthread_attr);

  84. }

  85. 

  86. static struct jent_notime_thread jent_notime_thread_builtin = {

  87. 	.jent_notime_init  = jent_notime_init,

  88. 	.jent_notime_fini  = jent_notime_fini,

  89. 	.jent_notime_start = jent_notime_start,

  90. 	.jent_notime_stop  = jent_notime_stop

  91. };

  92. 

  93. /***************************************************************************

  94.  * Timer-less timer replacement

  95.  *

  96.  * If there is no high-resolution hardware timer available, we create one

  97.  * ourselves. This logic is only used when the initialization identifies

  98.  * that no suitable time source is available.

  99.  ***************************************************************************/

  100. 

  101. static int jent_force_internal_timer = 0;

  102. static int jent_notime_switch_blocked = 0;

  103. 

  104. void jent_notime_block_switch(void)

  105. {

  106. 	jent_notime_switch_blocked = 1;

  107. }

  108. 

  109. static struct jent_notime_thread *notime_thread = &jent_notime_thread_builtin;

  110. 

  111. /**

  112.  * Timer-replacement loop

  113.  *

  114.  * @brief The measurement loop triggers the read of the value from the

  115.  * counter function. It conceptually acts as the low resolution

  116.  * samples timer from a ring oscillator.

  117.  */

  118. static void *jent_notime_sample_timer(void *arg)

  119. {

  120. 	struct rand_data *ec = (struct rand_data *)arg;

  121. 

  122. 	ec->notime_timer = 0;

  123. 

  124. 	while (1) {

  125. 		if (ec->notime_interrupt)

  126. 			return NULL;

  127. 

  128. 		ec->notime_timer++;

  129. 	}

  130. 

  131. 	return NULL;

  132. }

  133. 

  134. /*

  135.  * Enable the clock: spawn a new thread that holds a counter.

  136.  *

  137.  * Note, although creating a thread is expensive, we do that every time a

  138.  * caller wants entropy from us and terminate the thread afterwards. This

  139.  * is to ensure an attacker cannot easily identify the ticking thread.

  140.  */

  141. int jent_notime_settick(struct rand_data *ec)

  142. {

  143. 	if (!ec->enable_notime || !notime_thread)

  144. 		return 0;

  145. 

  146. 	ec->notime_interrupt = 0;

  147. 	ec->notime_prev_timer = 0;

  148. 	ec->notime_timer = 0;

  149. 

  150. 	return notime_thread->jent_notime_start(ec->notime_thread_ctx,

  151. 					       jent_notime_sample_timer, ec);

  152. }

  153. 

  154. void jent_notime_unsettick(struct rand_data *ec)

  155. {

  156. 	if (!ec->enable_notime || !notime_thread)

  157. 		return;

  158. 

  159. 	ec->notime_interrupt = 1;

  160. 	notime_thread->jent_notime_stop(ec->notime_thread_ctx);

  161. }

  162. 

  163. void jent_get_nstime_internal(struct rand_data *ec, uint64_t *out)

  164. {

  165. 	if (ec->enable_notime) {

  166. 		/*

  167. 		 * Allow the counting thread to be initialized and guarantee

  168. 		 * that it ticked since last time we looked.

  169. 		 *

  170. 		 * Note, we do not use an atomic operation here for reading

  171. 		 * jent_notime_timer since if this integer is garbled, it even

  172. 		 * adds to entropy. But on most architectures, read/write

  173. 		 * of an uint64_t should be atomic anyway.

  174. 		 */

  175. 		while (ec->notime_timer == ec->notime_prev_timer)

  176. 			jent_yield();

  177. 

  178. 		ec->notime_prev_timer = ec->notime_timer;

  179. 		*out = ec->notime_prev_timer;

  180. 	} else {

  181. 		jent_get_nstime(out);

  182. 	}

  183. }

  184. 

  185. static inline int jent_notime_enable_thread(struct rand_data *ec)

  186. {

  187. 	if (notime_thread)

  188. 		return notime_thread->jent_notime_init(&ec->notime_thread_ctx);

  189. 	return 0;

  190. }

  191. 

  192. void jent_notime_disable(struct rand_data *ec)

  193. {

  194. 	if (notime_thread)

  195. 		notime_thread->jent_notime_fini(ec->notime_thread_ctx);

  196. }

  197. 

  198. int jent_notime_enable(struct rand_data *ec, unsigned int flags)

  199. {

  200. 	/* Use internal timer */

  201. 	if (jent_force_internal_timer || (flags & JENT_FORCE_INTERNAL_TIMER)) {

  202. 		/* Self test not run yet */

  203. 		if (!jent_force_internal_timer &&

  204. 		    jent_time_entropy_init(ec->osr,

  205. 					   flags | JENT_FORCE_INTERNAL_TIMER))

  206. 			return EHEALTH;

  207. 

  208. 		ec->enable_notime = 1;

  209. 		return jent_notime_enable_thread(ec);

  210. 	}

  211. 

  212. 	return 0;

  213. }

  214. 

  215. int jent_notime_switch(struct jent_notime_thread *new_thread)

  216. {

  217. 	if (jent_notime_switch_blocked)

  218. 		return -EAGAIN;

  219. 	notime_thread = new_thread;

  220. 	return 0;

  221. }

  222. 

  223. void jent_notime_force(void)

  224. {

  225. 	jent_force_internal_timer = 1;

  226. }

  227. 

  228. int jent_notime_forced(void)

  229. {

  230. 	return jent_force_internal_timer;

  231. }

  232. 

  233. #endif /* JENT_CONF_ENABLE_INTERNAL_TIMER */