Merge tag 'random-6.19-rc1-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/crng/random

	u8 key[CHACHA_KEY_SIZE];

	/* Immediately schedule the next reseeding, so that it fires sooner rather than later. */

	if (likely(system_unbound_wq))

		queue_delayed_work(system_unbound_wq, &next_reseed, crng_reseed_interval());

	if (likely(system_dfl_wq))

		queue_delayed_work(system_dfl_wq, &next_reseed, crng_reseed_interval());

	extract_entropy(key, sizeof(key));

/*

 * This returns random bytes in arbitrary quantities. The quality of the

 * random bytes is good as /dev/urandom. In order to ensure that the

 * random bytes is as good as /dev/urandom. In order to ensure that the

 * randomness provided by this function is okay, the function

 * wait_for_random_bytes() should be called and return 0 at least once

 * at any point prior.

/*

 * Batched entropy returns random integers. The quality of the random

 * number is good as /dev/urandom. In order to ensure that the randomness

 * number is as good as /dev/urandom. In order to ensure that the randomness

 * provided by this function is okay, the function wait_for_random_bytes()

 * should be called and return 0 at least once at any point prior.

 */

	if (orig < POOL_READY_BITS && new >= POOL_READY_BITS) {

		crng_reseed(NULL); /* Sets crng_init to CRNG_READY under base_crng.lock. */

		if (static_key_initialized && system_unbound_wq)

			queue_work(system_unbound_wq, &set_ready);

		if (system_dfl_wq)

			queue_work(system_dfl_wq, &set_ready);

		atomic_notifier_call_chain(&random_ready_notifier, 0, NULL);

#ifdef CONFIG_VDSO_GETRANDOM

		WRITE_ONCE(vdso_k_rng_data->is_ready, true);

 *

 * add_bootloader_randomness() is called by bootloader drivers, such as EFI

 * and device tree, and credits its input depending on whether or not the

 * command line option 'random.trust_bootloader'.

 * command line option 'random.trust_bootloader' is set.

 *

 * add_vmfork_randomness() adds a unique (but not necessarily secret) ID

 * representing the current instance of a VM to the pool, without crediting,

	add_latent_entropy();

	/*

	 * If we were initialized by the cpu or bootloader before jump labels

	 * or workqueues are initialized, then we should enable the static

	 * branch here, where it's guaranteed that these have been initialized.

	 * If we were initialized by the cpu or bootloader before workqueues

	 * are initialized, then we should enable the static branch here.

	 */

	if (!static_branch_likely(&crng_is_ready) && crng_init >= CRNG_READY)

		crng_set_ready(NULL);

	struct entropy_timer_state *stack = PTR_ALIGN((void *)stack_bytes, SMP_CACHE_BYTES);

	unsigned int i, num_different = 0;

	unsigned long last = random_get_entropy();

	cpumask_var_t timer_cpus;

	int cpu = -1;

	for (i = 0; i < NUM_TRIAL_SAMPLES - 1; ++i) {

	atomic_set(&stack->samples, 0);

	timer_setup_on_stack(&stack->timer, entropy_timer, 0);

	if (!alloc_cpumask_var(&timer_cpus, GFP_KERNEL))

		goto out;

	while (!crng_ready() && !signal_pending(current)) {

		/*

		 * Check !timer_pending() and then ensure that any previous callback has finished

		 * executing by checking timer_delete_sync_try(), before queueing the next one.

		 */

		if (!timer_pending(&stack->timer) && timer_delete_sync_try(&stack->timer) >= 0) {

			struct cpumask timer_cpus;

			unsigned int num_cpus;

			/*

			preempt_disable();

			/* Only schedule callbacks on timer CPUs that are online. */

			cpumask_and(&timer_cpus, housekeeping_cpumask(HK_TYPE_TIMER), cpu_online_mask);

			num_cpus = cpumask_weight(&timer_cpus);

			cpumask_and(timer_cpus, housekeeping_cpumask(HK_TYPE_TIMER), cpu_online_mask);

			num_cpus = cpumask_weight(timer_cpus);

			/* In very bizarre case of misconfiguration, fallback to all online. */

			if (unlikely(num_cpus == 0)) {

				timer_cpus = *cpu_online_mask;

				num_cpus = cpumask_weight(&timer_cpus);

				*timer_cpus = *cpu_online_mask;

				num_cpus = cpumask_weight(timer_cpus);

			}

			/* Basic CPU round-robin, which avoids the current CPU. */

			do {

				cpu = cpumask_next(cpu, &timer_cpus);

				cpu = cpumask_next(cpu, timer_cpus);

				if (cpu >= nr_cpu_ids)

					cpu = cpumask_first(&timer_cpus);

					cpu = cpumask_first(timer_cpus);

			} while (cpu == smp_processor_id() && num_cpus > 1);

			/* Expiring the timer at `jiffies` means it's the next tick. */

	}

	mix_pool_bytes(&stack->entropy, sizeof(stack->entropy));

	free_cpumask_var(timer_cpus);

out:

	timer_delete_sync(&stack->timer);

	timer_destroy_on_stack(&stack->timer);

}

	 */

	freq_modulus = (dev->tv_freq - 676 /* (43.25-1) * 16 */) % (6 * 16);

	if (freq_modulus > 2 * 16) {

		struct rnd_state prng;

		prandom_seed_state(&prng, dev->tv_freq ^ 0x55);

		tpg_s_quality(&dev->tpg, TPG_QUAL_NOISE,

			next_pseudo_random32(dev->tv_freq ^ 0x55) & 0x3f);

			prandom_u32_state(&prng) & 0x3f);

		return;

	}

	if (freq_modulus < 12 /*0.75 * 16*/ || freq_modulus > 20 /*1.25 * 16*/)

	state->s4 = __seed(i, 128U);

}

/* Pseudo random number generator from numerical recipes. */

static inline u32 next_pseudo_random32(u32 seed)

{

	return seed * 1664525 + 1013904223;

}

#endif

	return ret;

}

#define declare_get_random_var_wait(name, ret_type) \

	static inline int get_random_ ## name ## _wait(ret_type *out) { \

		int ret = wait_for_random_bytes(); \

		if (unlikely(ret)) \

			return ret; \

		*out = get_random_ ## name(); \

		return 0; \

	}

declare_get_random_var_wait(u8, u8)

declare_get_random_var_wait(u16, u16)

declare_get_random_var_wait(u32, u32)

declare_get_random_var_wait(u64, u32)

declare_get_random_var_wait(long, unsigned long)

#undef declare_get_random_var

#ifdef CONFIG_SMP

int random_prepare_cpu(unsigned int cpu);

int random_online_cpu(unsigned int cpu);