From mboxrd@z Thu Jan  1 00:00:00 1970
Delivery-date: Tue, 27 May 2025 11:15:19 +0200
Received: from metis.whiteo.stw.pengutronix.de ([2a0a:edc0:2:b01:1d::104])
	by lore.white.stw.pengutronix.de with esmtps  (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
	(Exim 4.96)
	(envelope-from <distrokit-bounces+lore=lore.pengutronix.de@pengutronix.de>)
	id 1uJqP1-000o8C-13
	for lore@lore.pengutronix.de;
	Tue, 27 May 2025 11:15:19 +0200
Received: from localhost ([127.0.0.1] helo=metis.whiteo.stw.pengutronix.de)
	by metis.whiteo.stw.pengutronix.de with esmtp (Exim 4.92)
	(envelope-from <distrokit-bounces@pengutronix.de>)
	id 1uJqP0-0002ql-Um; Tue, 27 May 2025 11:15:18 +0200
Received: from drehscheibe.grey.stw.pengutronix.de ([2a0a:edc0:0:c01:1d::a2])
 by metis.whiteo.stw.pengutronix.de with esmtps
 (TLS1.3:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92)
 (envelope-from <rhi@pengutronix.de>)
 id 1uJqOy-0002qT-JB; Tue, 27 May 2025 11:15:16 +0200
Received: from pty.whiteo.stw.pengutronix.de ([2a0a:edc0:2:b01:1d::c5])
 by drehscheibe.grey.stw.pengutronix.de with esmtps (TLS1.3) tls
 TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (Exim 4.96)
 (envelope-from <rhi@pengutronix.de>) id 1uJqOy-000OYj-1E;
 Tue, 27 May 2025 11:15:16 +0200
Received: from rhi by pty.whiteo.stw.pengutronix.de with local (Exim 4.96)
 (envelope-from <rhi@pengutronix.de>) id 1uJqOy-00CTZK-0O;
 Tue, 27 May 2025 11:15:16 +0200
Date: Tue, 27 May 2025 11:15:16 +0200
From: Roland Hieber <rhi@pengutronix.de>
To: Ahmad Fatoum <a.fatoum@pengutronix.de>
Message-ID: <1748336969-924b86987f54e70da098e439@pty>
References: <20250526101147.1953428-1-rhi@pengutronix.de>
 <20250526101147.1953428-11-rhi@pengutronix.de>
 <daa7b6b1-7c49-4336-894f-c7b4023c25db@pengutronix.de>
 <1748255749-34c5bffa8585872666a04708@pty>
 <e87af203-f912-4e55-afa2-afb53e0adfde@pengutronix.de>
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Disposition: inline
Content-Transfer-Encoding: 8bit
In-Reply-To: <e87af203-f912-4e55-afa2-afb53e0adfde@pengutronix.de>
Subject: Re: [DistroKit] [PATCH 11/11] v7a: barebox: enable HWRNG drivers
 and allow fallback to PRNG
X-BeenThere: distrokit@pengutronix.de
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: DistroKit Mailinglist <distrokit.pengutronix.de>
List-Unsubscribe: <https://metis.pengutronix.de/mailman/options/distrokit>,
 <mailto:distrokit-request@pengutronix.de?subject=unsubscribe>
List-Archive: <https://metis.pengutronix.de/mailman/private/distrokit/>
List-Post: <mailto:distrokit@pengutronix.de>
List-Help: <mailto:distrokit-request@pengutronix.de?subject=help>
List-Subscribe: <https://metis.pengutronix.de/mailman/listinfo/distrokit>,
 <mailto:distrokit-request@pengutronix.de?subject=subscribe>
Cc: distrokit@pengutronix.de
Sender: "DistroKit" <distrokit-bounces@pengutronix.de>
X-SA-Exim-Connect-IP: 127.0.0.1
X-SA-Exim-Mail-From: distrokit-bounces@pengutronix.de
X-SA-Exim-Scanned: No (on metis.whiteo.stw.pengutronix.de); SAEximRunCond expanded to false

On Mon, May 26, 2025 at 12:59:33PM +0200, Ahmad Fatoum wrote:
> Hello Roland,
> 
> On 5/26/25 12:39, Roland Hieber wrote:
> > On Mon, May 26, 2025 at 12:20:36PM +0200, Ahmad Fatoum wrote:
> >> Hi Roland,
> >>
> >> On 5/26/25 12:11, Roland Hieber wrote:
> >>> Without ALLOW_PRNG_FALLBACK, barebox prints an unsightly error message
> >>> on boot:
> >>>
> >>>     ERROR: no HWRNG available!
> >>
> >> Is this because of the stack protector? Which platforms lack the RNG?
> > 
> > No, it's directly from get_crypto_bytes() in lib/random.c:
> > 
> >     137         if (!IS_ENABLED(CONFIG_ALLOW_PRNG_FALLBACK)) {
> >     138                 pr_err("no HWRNG available!\n");
> >     139                 return err;
> >     140         }
> > 
> > That's why I enabled CONFIG_ALLOW_PRNG_FALLBACK.
> 
> Yes, but why is get_crypto_bytes called in your case? Things like
> MAC address generation don't use a non-secure PRNG anyways.

Ah now I get what you mean. In that case, dmesg seems to suggest it's the stack
protector. On riotboard I get:

    […]
    register_driver: barebox-environment
        probe-> chosen:environment.of
    barebox-environment chosen:environment.of: Setting default environment path to /dev/mmc3.barebox-environment
    initcall-> stackprot_randomize_guard+0x1/0x38
    WARNING: falling back to Pseudo RNG source!
    initcall-> eth_register_of_fixup+0x1/0x10
    initcall-> dhcp_global_init+0x1/0xf8
    […]

> > In menuconfig there is:
> > 
> >     --- HWRNG Support
> >     [ ]   Timer IOMEM HW Random Number Generator support
> >     [*]   STM32 Random Number Generator
> >     [*]   OP-TEE based Random Number Generator support
> >     [*]   Broadcom BCM2835/BCM63xx Random Number Generator support
> >     [ ]   Broadcom iProc/STB RNG200 support
> >     [*]   OMAP Random Number Generator support
> 
> There is also the CAAM driver for i.MX, which is found separately in
> a crypto submenu.

Thanks, that got rid of the PRNG warning on riotboard :-) I'll enable it in v2
of this series too:

    --- a/configs/platform-v7a/barebox.config
    +++ b/configs/platform-v7a/barebox.config
    @@ -1239,7 +1239,9 @@ CONFIG_PHY_STM32_USBPHYC=y
     #
     # Hardware crypto devices
     #
    -# CONFIG_CRYPTO_DEV_FSL_CAAM is not set
    +CONFIG_CRYPTO_DEV_FSL_CAAM=y
    +CONFIG_CRYPTO_DEV_FSL_CAAM_RINGSIZE=9
    +CONFIG_CRYPTO_DEV_FSL_CAAM_RNG=y
     # end of Hardware crypto devices

 - Roland

> > I'm not sure whether we want CONFIG_HW_RANDOM_TIMERIOMEM, its help text sounds
> > more like a workaround than a solution:
> > 
> >     This driver provides barebox support for a generic Random                                                                  │   
> >     Number Generator used by reading a 'dumb' iomem address that                                                               │   
> >     is to be read no faster than, for example, once a second. 
> 
> I don't think we have hardware in DistroKit that this is useful on.
> 
> Cheers,
> Ahmad
> 
> > 
> >  - Roland
> > 
> >> Cheers,
> >> Ahmad
> >>
> >>>
> >>> Since we don't have HWRNG drivers for all available platforms, enable
> >>> those that we have (RPi and AM33xx). For the other platforms allow
> >>> fallback to the PRNG, which will at least only print a warning on boot
> >>> on platforms without HWRNG:
> >>>
> >>>     WARNING: falling back to Pseudo RNG source!
> >>>
> >>> … but in this case, this is expected.
> >>>
> >>> Signed-off-by: Roland Hieber <rhi@pengutronix.de>
> >>> ---
> >>>  configs/platform-v7a/barebox.config | 6 +++---
> >>>  1 file changed, 3 insertions(+), 3 deletions(-)
> >>>
> >>> diff --git a/configs/platform-v7a/barebox.config b/configs/platform-v7a/barebox.config
> >>> index 4780b6493a7a..86cb40acbf17 100644
> >>> --- a/configs/platform-v7a/barebox.config
> >>> +++ b/configs/platform-v7a/barebox.config
> >>> @@ -1106,9 +1106,9 @@ CONFIG_HWRNG=y
> >>>  # CONFIG_HW_RANDOM_TIMERIOMEM is not set
> >>>  CONFIG_HWRNG_STM32=y
> >>>  CONFIG_HW_RANDOM_OPTEE=y
> >>> -# CONFIG_HW_RANDOM_BCM2835 is not set
> >>> +CONFIG_HW_RANDOM_BCM2835=y
> >>>  # CONFIG_HW_RANDOM_IPROC_RNG200 is not set
> >>> -# CONFIG_HW_RANDOM_OMAP is not set
> >>> +CONFIG_HW_RANDOM_OMAP=y
> >>>  
> >>>  #
> >>>  # DMA support
> >>> @@ -1380,7 +1380,7 @@ CONFIG_IMAGE_SPARSE=y
> >>>  CONFIG_STMP_DEVICE=y
> >>>  CONFIG_LIBFDT=y
> >>>  # CONFIG_RATP is not set
> >>> -# CONFIG_ALLOW_PRNG_FALLBACK is not set
> >>> +CONFIG_ALLOW_PRNG_FALLBACK=y
> >>>  # CONFIG_CRC_CCITT is not set
> >>>  CONFIG_CRC8=y