lede/target/linux/generic/backport-6.6/906-08-v6.12-crypto-jitter-set-default-OSR-to-3.patch

From 95a798d20060d2b648dd604321e347c85edfd783 Mon Sep 17 00:00:00 2001
From: Stephan Mueller <smueller@chronox.de>
Date: Mon, 12 Aug 2024 08:25:42 +0200
Subject: [PATCH] crypto: jitter - set default OSR to 3

The user space Jitter RNG library uses the oversampling rate of 3 which
implies that each time stamp is credited with 1/3 bit of entropy. To
obtain 256 bits of entropy, 768 time stamps need to be sampled. The
increase in OSR is applied based on a report where the Jitter RNG is
used on a system exhibiting a challenging environment to collect
entropy.

This OSR default value is now applied to the Linux kernel version of
the Jitter RNG as well.

The increase in the OSR from 1 to 3 also implies that the Jitter RNG is
now slower by default.

Reported-by: Jeff Barnes <jeffbarnes@microsoft.com>
Signed-off-by: Stephan Mueller <smueller@chronox.com>
Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>
---
 crypto/Kconfig | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

--- a/crypto/Kconfig
+++ b/crypto/Kconfig
@@ -1345,7 +1345,7 @@ config CRYPTO_JITTERENTROPY_MEMORY_BLOCK
 config CRYPTO_JITTERENTROPY_OSR
 	int "CPU Jitter RNG Oversampling Rate"
 	range 1 15
-	default 1
+	default 3
 	help
 	  The Jitter RNG allows the specification of an oversampling rate (OSR).
 	  The Jitter RNG operation requires a fixed amount of timing
generic: crypto: fix jitterentropy initialization failed issue Sync jitterentropy source code with linux-6.12 to solve the issue of jitterentropy initialization failed: [ 9.523489] jitterentropy: Initialization failed with host not compliant with requirements: 9 [ 9.661916] kmodloader: 1 module could not be probed [ 9.662377] kmodloader: - jitterentropy_rng - 0 In linux upstream commit cf27d9475f37 ("crypto: jitter - use permanent health test storage"), when FIPS crypto is disabled, the health test results are always explicitly skipped. That means it will never return error code 9 (health test failed) again. Fixes: https://github.com/openwrt/openwrt/issues/16684 Signed-off-by: Shiji Yang <yangshiji66@outlook.com> Link: https://github.com/openwrt/openwrt/pull/18399 Signed-off-by: Robert Marko <robimarko@gmail.com> 2025-04-02 23:36:28 +08:00			`From 95a798d20060d2b648dd604321e347c85edfd783 Mon Sep 17 00:00:00 2001`
			`From: Stephan Mueller <smueller@chronox.de>`
			`Date: Mon, 12 Aug 2024 08:25:42 +0200`
			`Subject: [PATCH] crypto: jitter - set default OSR to 3`

			`The user space Jitter RNG library uses the oversampling rate of 3 which`
			`implies that each time stamp is credited with 1/3 bit of entropy. To`
			`obtain 256 bits of entropy, 768 time stamps need to be sampled. The`
			`increase in OSR is applied based on a report where the Jitter RNG is`
			`used on a system exhibiting a challenging environment to collect`
			`entropy.`

			`This OSR default value is now applied to the Linux kernel version of`
			`the Jitter RNG as well.`

			`The increase in the OSR from 1 to 3 also implies that the Jitter RNG is`
			`now slower by default.`

			`Reported-by: Jeff Barnes <jeffbarnes@microsoft.com>`
			`Signed-off-by: Stephan Mueller <smueller@chronox.com>`
			`Signed-off-by: Herbert Xu <herbert@gondor.apana.org.au>`
			`---`
			`crypto/Kconfig \| 2 +-`
			`1 file changed, 1 insertion(+), 1 deletion(-)`

			`--- a/crypto/Kconfig`
			`+++ b/crypto/Kconfig`
			`@@ -1345,7 +1345,7 @@ config CRYPTO_JITTERENTROPY_MEMORY_BLOCK`
			`config CRYPTO_JITTERENTROPY_OSR`
			`int "CPU Jitter RNG Oversampling Rate"`
			`range 1 15`
			`- default 1`
			`+ default 3`
			`help`
			`The Jitter RNG allows the specification of an oversampling rate (OSR).`
			`The Jitter RNG operation requires a fixed amount of timing`