D20419.diff
No OneTemporary
Actions

Size

4 KB

Referenced Files

None

Subscribers

None

D20419.diff
View Options

	Index: head/sys/dev/virtio/random/virtio_random.c
	===================================================================
	--- head/sys/dev/virtio/random/virtio_random.c
	+++ head/sys/dev/virtio/random/virtio_random.c
	@@ -33,21 +33,24 @@

	#include <sys/param.h>
	#include <sys/kernel.h>
	+#include <sys/malloc.h>
	#include <sys/module.h>
	#include <sys/sglist.h>
	#include <sys/callout.h>
	#include <sys/random.h>
	+#include <sys/stdatomic.h>

	#include <machine/bus.h>
	#include <machine/resource.h>
	#include <sys/bus.h>

	+#include <dev/random/randomdev.h>
	+#include <dev/random/random_harvestq.h>
	#include <dev/virtio/virtio.h>
	#include <dev/virtio/virtqueue.h>

	struct vtrnd_softc {
	uint64_t vtrnd_features;
	- struct callout vtrnd_callout;
	struct virtqueue *vtrnd_vq;
	};

	@@ -59,8 +62,8 @@

	static void vtrnd_negotiate_features(device_t);
	static int vtrnd_alloc_virtqueue(device_t);
	-static void vtrnd_harvest(struct vtrnd_softc *);
	-static void vtrnd_timer(void *);
	+static int vtrnd_harvest(struct vtrnd_softc , void , size_t *);
	+static unsigned vtrnd_read(void *, unsigned);

	#define VTRND_FEATURES 0

	@@ -68,6 +71,15 @@
	{ 0, NULL }
	};

	+static struct random_source random_vtrnd = {
	+ .rs_ident = "VirtIO Entropy Adapter",
	+ .rs_source = RANDOM_PURE_VIRTIO,
	+ .rs_read = vtrnd_read,
	+};
	+
	+/* Kludge for API limitations of random(4). */
	+static _Atomic(struct vtrnd_softc *) g_vtrnd_softc;
	+
	static device_method_t vtrnd_methods[] = {
	/* Device methods. */
	DEVMETHOD(device_probe, vtrnd_probe),
	@@ -125,13 +137,11 @@
	static int
	vtrnd_attach(device_t dev)
	{
	- struct vtrnd_softc *sc;
	+ struct vtrnd_softc sc, exp;
	int error;

	sc = device_get_softc(dev);

	- callout_init(&sc->vtrnd_callout, 1);
	-
	virtio_set_feature_desc(dev, vtrnd_feature_desc);
	vtrnd_negotiate_features(dev);

	@@ -141,7 +151,13 @@
	goto fail;
	}

	- callout_reset(&sc->vtrnd_callout, 5 * hz, vtrnd_timer, sc);
	+ exp = NULL;
	+ if (!atomic_compare_exchange_strong_explicit(&g_vtrnd_softc, &exp, sc,
	+ memory_order_release, memory_order_acquire)) {
	+ error = EEXIST;
	+ goto fail;
	+ }
	+ random_source_register(&random_vtrnd);

	fail:
	if (error)
	@@ -156,9 +172,20 @@
	struct vtrnd_softc *sc;

	sc = device_get_softc(dev);
	+ KASSERT(
	+ atomic_load_explicit(&g_vtrnd_softc, memory_order_acquire) == sc,
	+ ("only one global instance at a time"));

	- callout_drain(&sc->vtrnd_callout);
	+ random_source_deregister(&random_vtrnd);
	+ atomic_store_explicit(&g_vtrnd_softc, NULL, memory_order_release);

	+ /*
	+ * Unfortunately, deregister does not guarantee our source callback
	+ * will not be invoked after it returns. Use a kludge to prevent some,
	+ * but not all, possible races.
	+ */
	+ tsleep_sbt(&g_vtrnd_softc, 0, "vtrnddet", mstosbt(50), 0, C_HARDCLOCK);
	+
	return (0);
	}

	@@ -185,44 +212,64 @@
	return (virtio_alloc_virtqueues(dev, 0, 1, &vq_info));
	}

	-static void
	-vtrnd_harvest(struct vtrnd_softc *sc)
	+static int
	+vtrnd_harvest(struct vtrnd_softc sc, void buf, size_t *sz)
	{
	struct sglist_seg segs[1];
	struct sglist sg;
	struct virtqueue *vq;
	- uint32_t value;
	+ uint32_t value[HARVESTSIZE] __aligned(sizeof(uint32_t) * HARVESTSIZE);
	+ uint32_t rdlen;
	int error;

	- vq = sc->vtrnd_vq;
	+ _Static_assert(sizeof(value) < PAGE_SIZE, "sglist assumption");

	sglist_init(&sg, 1, segs);
	- error = sglist_append(&sg, &value, sizeof(value));
	- KASSERT(error == 0 && sg.sg_nseg == 1,
	- ("%s: error %d adding buffer to sglist", __func__, error));
	+ error = sglist_append(&sg, value, *sz);
	+ if (error != 0)
	+ panic("%s: sglist_append error=%d", __func__, error);

	- if (!virtqueue_empty(vq))
	- return;
	- if (virtqueue_enqueue(vq, &value, &sg, 0, 1) != 0)
	- return;
	+ vq = sc->vtrnd_vq;
	+ KASSERT(virtqueue_empty(vq), ("%s: non-empty queue", __func__));

	+ error = virtqueue_enqueue(vq, buf, &sg, 0, 1);
	+ if (error != 0)
	+ return (error);
	+
	/*
	* Poll for the response, but the command is likely already
	* done when we return from the notify.
	*/
	virtqueue_notify(vq);
	- virtqueue_poll(vq, NULL);
	+ virtqueue_poll(vq, &rdlen);

	- random_harvest_queue(&value, sizeof(value), RANDOM_PURE_VIRTIO);
	+ if (rdlen > *sz)
	+ panic("%s: random device wrote %zu bytes beyond end of provided"
	+ " buffer %p:%zu", __func__, (size_t)rdlen - *sz,
	+ (void )value, sz);
	+ else if (rdlen == 0)
	+ return (EAGAIN);
	+ sz = MIN(rdlen, sz);
	+ memcpy(buf, value, *sz);
	+ explicit_bzero(value, *sz);
	+ return (0);
	}

	-static void
	-vtrnd_timer(void *xsc)
	+static unsigned
	+vtrnd_read(void *buf, unsigned usz)
	{
	struct vtrnd_softc *sc;
	+ size_t sz;
	+ int error;

	- sc = xsc;
	+ sc = g_vtrnd_softc;
	+ if (sc == NULL)
	+ return (0);

	- vtrnd_harvest(sc);
	- callout_schedule(&sc->vtrnd_callout, 5 * hz);
	+ sz = usz;
	+ error = vtrnd_harvest(sc, buf, &sz);
	+ if (error != 0)
	+ return (0);
	+
	+ return (sz);
	}

File Metadata

Mime Type: text/plain
Expires: Sun, Apr 6, 1:15 AM (1 h, 42 m)
Storage Engine: blob
Storage Format: Raw Data
Storage Handle: 17399169
Default Alt Text: D20419.diff (4 KB)

D20419.diffNo OneTemporaryActions

D20419.diffView Options

File Metadata

Event Timeline

D20419.diff
No OneTemporary
Actions

D20419.diff
View Options