[U-Boot] [PATCH] lib: uuid: Improve randomness of uuid values on RANDOM

public inbox for u-boot@lists.denx.de
 help / color / mirror / Atom feed

* [U-Boot] [PATCH] lib: uuid: Improve randomness of uuid values on RANDOM_UUID=y
@ 2019-04-26 21:54 Eugeniu Rosca
  2019-04-27 15:05 ` Lukasz Majewski
  0 siblings, 1 reply; 5+ messages in thread
From: Eugeniu Rosca @ 2019-04-26 21:54 UTC (permalink / raw)
  To: u-boot

The random uuid values (enabled via CONFIG_RANDOM_UUID=y) on our
platform are always the same. Below is consistent on each cold boot:

 => ### reach U-Boot prompt
 => setenv uuid_gpt_misc
 => gpt verify mmc 1 $partitions
    Verify GPT: success!
 => print uuid_gpt_misc
    uuid_gpt_misc=d117f98e-6f2c-d04b-a5b2-331a19f91cb2
 => setenv uuid_gpt_misc
 => gpt verify mmc 1 $partitions
    Verify GPT: success!
 => print uuid_gpt_misc
    uuid_gpt_misc=ad5ec4b6-2d9f-8544-9417-fe3bd1c9b1b3

While the uuids do change on every 'gpt {write,verify}' command,
the values appear to be taken from the same pool, in the same order.

As a user, I expect a trully random uuid value in the above example.
Otherwise, system/RFS designers and OS people might assume they have
a reliable/consistent uuid passed by the bootloader, while the truth
is U-Boot simply lacks entropy to generate a random string.

Let's use get_timer() to update the seed, same as done in commit
da384a9d7628 ("net: rename and refactor eth_rand_ethaddr() function").

Signed-off-by: Eugeniu Rosca <erosca@de.adit-jv.com>
---
 lib/uuid.c | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/lib/uuid.c b/lib/uuid.c
index fa20ee39fc32..8a82cb234b88 100644
--- a/lib/uuid.c
+++ b/lib/uuid.c
@@ -238,6 +238,8 @@ void gen_rand_uuid(unsigned char *uuid_bin)
 	unsigned int *ptr = (unsigned int *)&uuid;
 	int i;

+	srand(get_timer(0));
+
 	/* Set all fields randomly */
 	for (i = 0; i < sizeof(struct uuid) / sizeof(*ptr); i++)
 		*(ptr + i) = cpu_to_be32(rand());
-- 
2.21.0

^ permalink raw reply related	[flat|nested] 5+ messages in thread

* [U-Boot] [PATCH] lib: uuid: Improve randomness of uuid values on RANDOM_UUID=y
  2019-04-26 21:54 [U-Boot] [PATCH] lib: uuid: Improve randomness of uuid values on RANDOM_UUID=y Eugeniu Rosca
@ 2019-04-27 15:05 ` Lukasz Majewski
  2019-04-29 10:00   ` Eugeniu Rosca
  2019-04-29 13:00   ` Eugeniu Rosca
  0 siblings, 2 replies; 5+ messages in thread
From: Lukasz Majewski @ 2019-04-27 15:05 UTC (permalink / raw)
  To: u-boot

On Fri, 26 Apr 2019 23:54:58 +0200
Eugeniu Rosca <roscaeugeniu@gmail.com> wrote:

> The random uuid values (enabled via CONFIG_RANDOM_UUID=y) on our
> platform are always the same. Below is consistent on each cold boot:
> 
>  => ### reach U-Boot prompt
>  => setenv uuid_gpt_misc
>  => gpt verify mmc 1 $partitions  
>     Verify GPT: success!
>  => print uuid_gpt_misc  
>     uuid_gpt_misc=d117f98e-6f2c-d04b-a5b2-331a19f91cb2
>  => setenv uuid_gpt_misc
>  => gpt verify mmc 1 $partitions  
>     Verify GPT: success!
>  => print uuid_gpt_misc  
>     uuid_gpt_misc=ad5ec4b6-2d9f-8544-9417-fe3bd1c9b1b3
> 
> While the uuids do change on every 'gpt {write,verify}' command,
> the values appear to be taken from the same pool, in the same order.
> 
> As a user, I expect a trully random uuid value in the above example.
> Otherwise, system/RFS designers and OS people might assume they have
> a reliable/consistent uuid passed by the bootloader, while the truth
> is U-Boot simply lacks entropy to generate a random string.
> 
> Let's use get_timer() to update the seed, same as done in commit
> da384a9d7628 ("net: rename and refactor eth_rand_ethaddr() function").
> 
> Signed-off-by: Eugeniu Rosca <erosca@de.adit-jv.com>
> ---
>  lib/uuid.c | 2 ++
>  1 file changed, 2 insertions(+)
> 
> diff --git a/lib/uuid.c b/lib/uuid.c
> index fa20ee39fc32..8a82cb234b88 100644
> --- a/lib/uuid.c
> +++ b/lib/uuid.c
> @@ -238,6 +238,8 @@ void gen_rand_uuid(unsigned char *uuid_bin)
>  	unsigned int *ptr = (unsigned int *)&uuid;
>  	int i;
>  
> +	srand(get_timer(0));
> +
>  	/* Set all fields randomly */
>  	for (i = 0; i < sizeof(struct uuid) / sizeof(*ptr); i++)
>  		*(ptr + i) = cpu_to_be32(rand());

Reviewed-by: Lukasz Majewski <lukma@denx.de>


Best regards,

Lukasz Majewski

--

DENX Software Engineering GmbH,      Managing Director: Wolfgang Denk
HRB 165235 Munich, Office: Kirchenstr.5, D-82194 Groebenzell, Germany
Phone: (+49)-8142-66989-59 Fax: (+49)-8142-66989-80 Email: lukma at denx.de
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 488 bytes
Desc: OpenPGP digital signature
URL: <http://lists.denx.de/pipermail/u-boot/attachments/20190427/23d82eb0/attachment.sig>

^ permalink raw reply	[flat|nested] 5+ messages in thread

* [U-Boot] [PATCH] lib: uuid: Improve randomness of uuid values on RANDOM_UUID=y
  2019-04-27 15:05 ` Lukasz Majewski
@ 2019-04-29 10:00   ` Eugeniu Rosca
  2019-04-29 13:00   ` Eugeniu Rosca
  1 sibling, 0 replies; 5+ messages in thread
From: Eugeniu Rosca @ 2019-04-29 10:00 UTC (permalink / raw)
  To: u-boot

Hi Lukasz,

On Sat, Apr 27, 2019 at 05:05:28PM +0200, Lukasz Majewski wrote:
[..]
> Reviewed-by: Lukasz Majewski <lukma@denx.de>
> 

Thank you for the prompt review.

-- 
Best Regards,
Eugeniu.

^ permalink raw reply	[flat|nested] 5+ messages in thread

* [U-Boot] [PATCH] lib: uuid: Improve randomness of uuid values on RANDOM_UUID=y
  2019-04-27 15:05 ` Lukasz Majewski
  2019-04-29 10:00   ` Eugeniu Rosca
@ 2019-04-29 13:00   ` Eugeniu Rosca
  2019-04-30  3:04     ` Eugeniu Rosca
  1 sibling, 1 reply; 5+ messages in thread
From: Eugeniu Rosca @ 2019-04-29 13:00 UTC (permalink / raw)
  To: u-boot

Hi Lukasz,

Thanks to Roman, we found a potential regression in this solution.

Particularly when gen_rand_uuid() is called in a loop, get_timer(0)
might return the same value, leading to the same seed value being
passed to srand(), leading to the same uuid value being generated
for several partitions.

Please, hold off from applying the patch until I push a v2.

To be more clear, NAK.

-- 
Best Regards,
Eugeniu.

^ permalink raw reply	[flat|nested] 5+ messages in thread

* [U-Boot] [PATCH] lib: uuid: Improve randomness of uuid values on RANDOM_UUID=y
  2019-04-29 13:00   ` Eugeniu Rosca
@ 2019-04-30  3:04     ` Eugeniu Rosca
  0 siblings, 0 replies; 5+ messages in thread
From: Eugeniu Rosca @ 2019-04-30  3:04 UTC (permalink / raw)
  To: u-boot

Superseded by https://patchwork.ozlabs.org/patch/1092945/
("[U-Boot,4/4] lib: uuid: Improve randomness of uuid values on RANDOM_UUID=y")

-- 
Best Regards,
Eugeniu.

^ permalink raw reply	[flat|nested] 5+ messages in thread

end of thread, other threads:[~2019-04-30  3:04 UTC | newest]

Thread overview: 5+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2019-04-26 21:54 [U-Boot] [PATCH] lib: uuid: Improve randomness of uuid values on RANDOM_UUID=y Eugeniu Rosca
2019-04-27 15:05 ` Lukasz Majewski
2019-04-29 10:00   ` Eugeniu Rosca
2019-04-29 13:00   ` Eugeniu Rosca
2019-04-30  3:04     ` Eugeniu Rosca

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox