| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Sat, 15 Jun 2013 05:14:49 +0300
From: Andy Shevchenko <andy.shevchenko@...il.com>
To: Oliver Schinagl <oliver+list@...inagl.nl>
Cc: Arnd Bergmann <arnd@...db.de>,
Greg Kroah-Hartman <gregkh@...uxfoundation.org>,
"maxime.ripard" <maxime.ripard@...e-electrons.com>,
"linux-kernel@...r.kernel.org" <linux-kernel@...r.kernel.org>,
linux-arm Mailing List <linux-arm-kernel@...ts.infradead.org>,
Russell King <linux@....linux.org.uk>,
Linus Walleij <linus.walleij@...aro.org>,
Oliver Schinagl <oliver@...inagl.nl>
Subject: Re: [PATCH 1/2] Initial support for Allwinner's Security ID fuses
On Sat, Jun 15, 2013 at 2:16 AM, Oliver Schinagl
<oliver+list@...inagl.nl> wrote:
> From: Oliver Schinagl <oliver@...inagl.nl>
>
> Allwinner has electric fuses (efuse) on their line of chips. This driver
> reads those fuses, seeds the kernel entropy and exports them as a sysfs node.
>
> These fuses are most likly to be programmed at the factory, encoding
> things like Chip ID, some sort of serial number etc and appear to be
> reasonable unique.
> While in theory, these should be writeable by the user, it will probably
> be inconvinient to do so. Allwinner recommends that a certain input pin,
> labeled 'efuse_vddq', be connected to GND. To write these fuses, 2.5 V
> needs to be applied to this pin.
>
> Even so, they can still be used to generate a board-unique mac from, board
> unique RSA key and seed the kernel RNG.
>
> Currently supported are the following known chips:
> Allwinner sun4i (A10)
> Allwinner sun5i (A10s, A13)
Few comments below.
> +++ b/drivers/misc/eeprom/sunxi_sid.c
> +#include <linux/compiler.h>
Are you sure this has to be explicitly mentioned?
> +#define SID_SIZE (SID_KEYS * 4)
> +
> +
Extra line.
> +/* We read the entire key, but only return the requested byte. This is of
> + * course slower then it could be and uses 4 times more reads as needed but
> + * keeps code simpler.
May be better to rewrite this logic and save CPU and I/O resources?
> + */
> +static u8 sunxi_sid_read_byte(const void __iomem *sid_reg_base,
> + const unsigned int offset)
> +{
> + u32 sid_key = 0;
> +
> + if (offset >= SID_SIZE)
> + goto exit;
Just return here.
> + sid_key = ioread32be(sid_reg_base + round_down(offset, 4));
> + sid_key >>= (offset % 4) * 8;
> + sid_key &= 0xff;
Redundant 0xff.
> + /* fall through */
> +
> +exit:
> + return (u8)sid_key;
No need to have explicit casting here.
> + pdev = (struct platform_device *)to_platform_device(kobj_to_dev(kobj));
Ditto.
> + sid_reg_base = (void __iomem *)platform_get_drvdata(pdev);
Ditto.
> +static int sunxi_sid_remove(struct platform_device *pdev)
> +{
> + device_remove_bin_file(&pdev->dev, &sid_bin_attr);
> + dev_info(&pdev->dev, "sunxi SID driver unloaded\n");
Often this is useless message. In what case this is crucial?
> +static int __init sunxi_sid_probe(struct platform_device *pdev)
> +{
> + int entropy[SID_SIZE], i;
> + struct resource *res;
> + void __iomem *sid_reg_base;
> + int ret;
> +
> + if (!pdev->dev.of_node) {
> + dev_err(&pdev->dev, "No devicetree data available\n");
> + ret = -ENXIO;
> + goto exit;
You have only return, use it. It's common practice in the .probe() function.
> + if (IS_ERR(sid_reg_base)) {
> + ret = PTR_ERR(sid_reg_base);
> + goto exit;
Ditto.
> + ret = device_create_bin_file(&pdev->dev, &sid_bin_attr);
> + if (ret) {
> + dev_err(&pdev->dev, "Unable to create sysfs bin entry\n");
> + goto exit;
Ditto.
> + dev_info(&pdev->dev, "sunxi SID ver %s loaded\n", DRV_VERSION);
> + ret = 0;
> + /* fall through */
Ditto.
> +
> +exit:
> + return ret;
Useless lines.
> +module_platform_driver(sunxi_sid_driver);
> +
> +
Extra line.
--
With Best Regards,
Andy Shevchenko
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists