Re: [Buildroot] [PATCH v3] package/urandom-scripts: actually credit seed files via seedrng

From: David Laight <David.Laight@ACULAB.COM>
To: 'Peter Korsgaard' <peter@korsgaard.com>,
	"Jason A. Donenfeld" <Jason@zx2c4.com>
Cc: James Hilliard <james.hilliard1@gmail.com>,
	"Yann E. MORIN" <yann.morin.1998@free.fr>,
	buildroot <buildroot@buildroot.org>
Subject: Re: [Buildroot] [PATCH v3] package/urandom-scripts: actually credit seed files via seedrng
Date: Fri, 1 Apr 2022 08:12:28 +0000	[thread overview]
Message-ID: <2949fa8776db4c96800e1df8e39a8ec2@AcuMS.aculab.com> (raw)
In-Reply-To: <87bkxm2gix.fsf@dell.be.48ers.dk>

I used the following small program instead of dd to credit the entropy.

+#include <linux/random.h>
+#include <sys/ioctl.h>
+#include <unistd.h>
+#include <fcntl.h>
+
+/* Just writing to /dev/urandom doesn't credit any entropy
+ * so the crng remains uninitialised.
+ * So use the relevant ioctl instead. */
+
+int main(int argc, char **argv)
+{
+	int fd;
+	int len;
+	struct {
+		struct rand_pool_info info;
+		int buf[4096];
+	} rnd_info;
+
+	if (!argv[1])
+		return 1;
+
+	fd = open(argv[1], O_RDONLY);
+	if (fd < 0)
+		return 1;
+	len = read(fd, rnd_info.buf, sizeof rnd_info.buf);
+	close(fd);
+	if (len <= 0)
+		return 1;
+
+	fd = open("/dev/urandom", O_RDWR);
+	if (fd < 0)
+		return 1;
+	rnd_info.info.entropy_count = len * 8;
+	rnd_info.info.buf_size = len;
+
+	len = ioctl(fd, RNDADDENTROPY, &rnd_info);
+
+	return len ? 1 : 0;
+}

Seems to do the trick.
Something that size is probably a candidate for busybox.
Although it does really need to run before udev is initialised.

	David

-
Registered Address Lakeside, Bramley Road, Mount Farm, Milton Keynes, MK1 1PT, UK
Registration No: 1397386 (Wales)

_______________________________________________
buildroot mailing list
buildroot@buildroot.org
https://lists.buildroot.org/mailman/listinfo/buildroot