[src/trunk]: src/sys/arch/x86/x86 Count down bits of entropy, not bits of dat...

[riastradh <riastradh%NetBSD.org@localhost>]

details:   https://anonhg.NetBSD.org/src/rev/2576123c1013
branches:  trunk
changeset: 1011025:2576123c1013
user:      riastradh <riastradh%NetBSD.org@localhost>
date:      Mon Jun 15 01:24:20 2020 +0000

description:
Count down bits of entropy, not bits of data, in x86 cpu_rng.

Fixes logic in this loop for XSTORERNG on VIA CPUs, which are deemed
to have half the entropy per bit of data as RDSEED on Intel CPUs, so
that it gathers enough entropy on the first request, not on the
second request.

diffstat:

 sys/arch/x86/x86/cpu_rng.c |  5 +++--
 1 files changed, 3 insertions(+), 2 deletions(-)

diffs (26 lines):

diff -r 31b056aa361a -r 2576123c1013 sys/arch/x86/x86/cpu_rng.c
--- a/sys/arch/x86/x86/cpu_rng.c        Mon Jun 15 01:23:44 2020 +0000
+++ b/sys/arch/x86/x86/cpu_rng.c        Mon Jun 15 01:24:20 2020 +0000
@@ -1,4 +1,4 @@
-/* $NetBSD: cpu_rng.c,v 1.16 2020/06/15 01:23:44 riastradh Exp $ */
+/* $NetBSD: cpu_rng.c,v 1.17 2020/06/15 01:24:20 riastradh Exp $ */
 
 /*-
  * Copyright (c) 2015 The NetBSD Foundation, Inc.
@@ -254,7 +254,7 @@
        uint64_t buf[2*N];
        unsigned i, nbits = 0;
 
-       for (; nbytes; nbytes -= MIN(nbytes, sizeof buf)) {
+       while (nbytes) {
                /*
                 * The fraction of outputs this rejects in correct
                 * operation is 1/2^256, which is close enough to zero
@@ -269,6 +269,7 @@
                        nbits = 0;
                }
                rnd_add_data_sync(&cpu_rng_source, buf, sizeof buf, nbits);
+               nbytes -= MIN(MIN(nbytes, sizeof buf), MAX(1, 8*nbits));
        }
 #undef N
 }