[v3,12/23] linux-user: Call qcrypto_init if not using -seed

Message ID	20190315032629.21234-13-richard.henderson@linaro.org
State	Superseded
Headers	show Delivered-To: patch@linaro.org Received-SPF: pass (google.com: domain of qemu-devel-bounces+patch=linaro.org@nongnu.org designates 209.51.188.17 as permitted sender) client-ip=209.51.188.17; From: Richard Henderson <richard.henderson@linaro.org> To: qemu-devel@nongnu.org Date: Thu, 14 Mar 2019 20:26:18 -0700 Message-Id: <20190315032629.21234-13-richard.henderson@linaro.org> In-Reply-To: <20190315032629.21234-1-richard.henderson@linaro.org> References: <20190315032629.21234-1-richard.henderson@linaro.org> Subject: [Qemu-devel] [PATCH v3 12/23] linux-user: Call qcrypto_init if not using -seed Precedence: list Cc: Laurent Vivier <laurent@vivier.eu> Errors-To: qemu-devel-bounces+patch=linaro.org@nongnu.org Sender: "Qemu-devel" <qemu-devel-bounces+patch=linaro.org@nongnu.org>
Series	Add qemu_getrandom and ARMv8.5-RNG etc \| expand [v3,00/23] Add qemu_getrandom and ARMv8.5-RNG etc [v3,01/23] crypto: Merge crypto-obj-y into libqemuutil.a [v3,02/23] crypto: Reverse code blocks in random-platform.c [v3,03/23] crypto: Do not fail for EINTR during qcrypto_random_bytes [v3,04/23] crypto: Use O_CLOEXEC in qcrypto_random_init [v3,05/23] crypto: Use getrandom for qcrypto_random_bytes [v3,06/23] crypto: Change the qcrypto_random_bytes buffer type to void* [v3,07/23] ui/vnc: Split out authentication_failure [v3,08/23] ui/vnc: Use gcrypto_random_bytes for start_auth_vnc [v3,09/23] util: Add qemu_guest_getrandom and associated routines [v3,10/23] cpus: Initialize pseudo-random seeds for all guest cpus [v3,11/23] linux-user: Initialize pseudo-random seeds for all guest cpus [v3,12/23] linux-user: Call qcrypto_init if not using -seed [v3,13/23] linux-user: Use qemu_guest_getrandom_nofail for AT_RANDOM [v3,14/23] linux-user/aarch64: Use qemu_guest_getrandom for PAUTH keys [v3,15/23] linux-user: Remove srand call [v3,16/23] aspeed/scu: Use qemu_guest_getrandom_nofail [v3,17/23] hw/misc/nrf51_rng: Use qemu_guest_getrandom_nofail [v3,18/23] hw/misc/bcm2835_rng: Use qemu_guest_getrandom_nofail [v3,19/23] hw/misc/exynos4210_rng: Use qemu_guest_getrandom [v3,20/23] target/arm: Put all PAC keys into a structure [v3,21/23] target/arm: Implement ARMv8.5-RNG [v3,22/23] target/ppc: Use qemu_guest_getrandom for DARN [v3,23/23] target/i386: Implement CPUID_EXT_RDRAND

Message ID

20190315032629.21234-13-richard.henderson@linaro.org

State

Superseded

Headers

Received-SPF: pass (google.com: domain of
	qemu-devel-bounces+patch=linaro.org@nongnu.org designates
	209.51.188.17 as permitted sender) client-ip=209.51.188.17; 
From: Richard Henderson <richard.henderson@linaro.org>
To: qemu-devel@nongnu.org
Date: Thu, 14 Mar 2019 20:26:18 -0700
Message-Id: <20190315032629.21234-13-richard.henderson@linaro.org>
In-Reply-To: <20190315032629.21234-1-richard.henderson@linaro.org>
References: <20190315032629.21234-1-richard.henderson@linaro.org>
Subject: [Qemu-devel] [PATCH v3 12/23] linux-user: Call qcrypto_init if not
	using -seed
Precedence: list
Cc: Laurent Vivier <laurent@vivier.eu>
Errors-To: qemu-devel-bounces+patch=linaro.org@nongnu.org
Sender: "Qemu-devel" <qemu-devel-bounces+patch=linaro.org@nongnu.org>

Series

Add qemu_getrandom and ARMv8.5-RNG etc | expand

Cc: Laurent Vivier <laurent@vivier.eu> Signed-off-by: Richard Henderson <richard.henderson@linaro.org> --- linux-user/main.c | 15 +++++++++++++-- 1 file changed, 13 insertions(+), 2 deletions(-) -- 2.17.2

Comments

Philippe Mathieu-Daudé April 11, 2019, 9:49 a.m. UTC | #1

Hi Richard,

On 3/15/19 4:26 AM, Richard Henderson wrote:
> Cc: Laurent Vivier <laurent@vivier.eu>

> Signed-off-by: Richard Henderson <richard.henderson@linaro.org>

> ---

>  linux-user/main.c | 15 +++++++++++++--

>  1 file changed, 13 insertions(+), 2 deletions(-)

> 

> diff --git a/linux-user/main.c b/linux-user/main.c

> index cf7095bdaf..8478306eef 100644

> --- a/linux-user/main.c

> +++ b/linux-user/main.c

> @@ -38,6 +38,7 @@

>  #include "trace/control.h"

>  #include "target_elf.h"

>  #include "cpu_loop-common.h"

> +#include "crypto/init.h"

>  

>  char *exec_path;

>  

> @@ -686,8 +687,18 @@ int main(int argc, char **argv, char **envp)

>      if (seed_optarg == NULL) {

>          seed_optarg = getenv("QEMU_RAND_SEED");

>      }

> -    if (seed_optarg != NULL) {

> -        qemu_guest_random_seed_main(seed_optarg, &error_fatal);

> +    {


Since 7be41675f7c we use gnu99 C, so this extra block indentation can be
removed.

> +        Error *err = NULL;

> +        if (seed_optarg != NULL) {

> +            qemu_guest_random_seed_main(seed_optarg, &err);

> +        } else {

> +            /* ??? Assumes qcrypto is only used by qemu_guest_getrandom.  */

> +            qcrypto_init(&err);

> +        }

> +        if (err) {

> +            error_reportf_err(err, "cannot initialize crypto: ");

> +            exit(1);

> +        }

>      }

>  

>      target_environ = envlist_to_environ(envlist, NULL);

>

Richard Henderson April 13, 2019, 6:44 a.m. UTC | #2

On 4/10/19 11:49 PM, Philippe Mathieu-Daudé wrote:
>> -    if (seed_optarg != NULL) {

>> -        qemu_guest_random_seed_main(seed_optarg, &error_fatal);

>> +    {

> Since 7be41675f7c we use gnu99 C, so this extra block indentation can be

> removed.

> 

>> +        Error *err = NULL;

>> +        if (seed_optarg != NULL) {

>> +            qemu_guest_random_seed_main(seed_optarg, &err);

>> +        } else {

>> +            /* ??? Assumes qcrypto is only used by qemu_guest_getrandom.  */

>> +            qcrypto_init(&err);

>> +        }

>> +        if (err) {

>> +            error_reportf_err(err, "cannot initialize crypto: ");

>> +            exit(1);

>> +        }

>>      }


I could, but it also limits the scope, which is of more importance to variables
who have their address taken.  It means that their storage could (in theory) be
shared with objects not overlapping in scope.


r~

Philippe Mathieu-Daudé April 15, 2019, 10:23 a.m. UTC | #3

On 4/13/19 8:44 AM, Richard Henderson wrote:
> On 4/10/19 11:49 PM, Philippe Mathieu-Daudé wrote:

>>> -    if (seed_optarg != NULL) {

>>> -        qemu_guest_random_seed_main(seed_optarg, &error_fatal);

>>> +    {

>> Since 7be41675f7c we use gnu99 C, so this extra block indentation can be

>> removed.

>>

>>> +        Error *err = NULL;

>>> +        if (seed_optarg != NULL) {

>>> +            qemu_guest_random_seed_main(seed_optarg, &err);

>>> +        } else {

>>> +            /* ??? Assumes qcrypto is only used by qemu_guest_getrandom.  */

>>> +            qcrypto_init(&err);

>>> +        }

>>> +        if (err) {

>>> +            error_reportf_err(err, "cannot initialize crypto: ");

>>> +            exit(1);

>>> +        }

>>>      }

> 

> I could, but it also limits the scope, which is of more importance to variables

> who have their address taken.  It means that their storage could (in theory) be

> shared with objects not overlapping in scope.


Fine then.

I think your '???' comment is appropriate but I'd rather let Daniel
opinate. Except that comment, for the rest:

Reviewed-by: Philippe Mathieu-Daudé <philmd@redhat.com>

Daniel P. Berrangé April 15, 2019, 10:28 a.m. UTC | #4

On Mon, Apr 15, 2019 at 12:23:18PM +0200, Philippe Mathieu-Daudé wrote:
> On 4/13/19 8:44 AM, Richard Henderson wrote:

> > On 4/10/19 11:49 PM, Philippe Mathieu-Daudé wrote:

> >>> -    if (seed_optarg != NULL) {

> >>> -        qemu_guest_random_seed_main(seed_optarg, &error_fatal);

> >>> +    {

> >> Since 7be41675f7c we use gnu99 C, so this extra block indentation can be

> >> removed.

> >>

> >>> +        Error *err = NULL;

> >>> +        if (seed_optarg != NULL) {

> >>> +            qemu_guest_random_seed_main(seed_optarg, &err);

> >>> +        } else {

> >>> +            /* ??? Assumes qcrypto is only used by qemu_guest_getrandom.  */

> >>> +            qcrypto_init(&err);

> >>> +        }

> >>> +        if (err) {

> >>> +            error_reportf_err(err, "cannot initialize crypto: ");

> >>> +            exit(1);

> >>> +        }

> >>>      }

> > 

> > I could, but it also limits the scope, which is of more importance to variables

> > who have their address taken.  It means that their storage could (in theory) be

> > shared with objects not overlapping in scope.

> 

> Fine then.

> 

> I think your '???' comment is appropriate but I'd rather let Daniel

> opinate. Except that comment, for the rest:


In linux-user context, afaik, the random APIs are the only stuff that
will be used, none of the hash or cipher stuff is needed.

> 

> Reviewed-by: Philippe Mathieu-Daudé <philmd@redhat.com>

> 


Regards,
Daniel
-- 
|: https://berrange.com      -o-    https://www.flickr.com/photos/dberrange :|
|: https://libvirt.org         -o-            https://fstop138.berrange.com :|
|: https://entangle-photo.org    -o-    https://www.instagram.com/dberrange :|

diff --git a/linux-user/main.c b/linux-user/main.c
index cf7095bdaf..8478306eef 100644
--- a/linux-user/main.c
+++ b/linux-user/main.c
@@ -38,6 +38,7 @@ 
 #include "trace/control.h"
 #include "target_elf.h"
 #include "cpu_loop-common.h"
+#include "crypto/init.h"
 
 char *exec_path;
 
@@ -686,8 +687,18 @@  int main(int argc, char **argv, char **envp)
     if (seed_optarg == NULL) {
         seed_optarg = getenv("QEMU_RAND_SEED");
     }
-    if (seed_optarg != NULL) {
-        qemu_guest_random_seed_main(seed_optarg, &error_fatal);
+    {
+        Error *err = NULL;
+        if (seed_optarg != NULL) {
+            qemu_guest_random_seed_main(seed_optarg, &err);
+        } else {
+            /* ??? Assumes qcrypto is only used by qemu_guest_getrandom.  */
+            qcrypto_init(&err);
+        }
+        if (err) {
+            error_reportf_err(err, "cannot initialize crypto: ");
+            exit(1);
+        }
     }
 
     target_environ = envlist_to_environ(envlist, NULL);

[v3,12/23] linux-user: Call qcrypto_init if not using -seed

Commit Message

Comments

Patch