1*c54f35caSApple OSS Distributions #include <stdlib.h> 2*c54f35caSApple OSS Distributions #include <sys/sysctl.h> 3*c54f35caSApple OSS Distributions #include <darwintest.h> 4*c54f35caSApple OSS Distributions #include <perfdata/perfdata.h> 5*c54f35caSApple OSS Distributions 6*c54f35caSApple OSS Distributions typedef uint32_t entropy_sample_t; 7*c54f35caSApple OSS Distributions 8*c54f35caSApple OSS Distributions T_GLOBAL_META(T_META_NAMESPACE("xnu.crypto"), 9*c54f35caSApple OSS Distributions T_META_RADAR_COMPONENT_NAME("xnu"), 10*c54f35caSApple OSS Distributions T_META_RADAR_COMPONENT_VERSION("crypto")); 11*c54f35caSApple OSS Distributions 12*c54f35caSApple OSS Distributions T_DECL(entropy_collect, "Collect entropy for offline analysis", 13*c54f35caSApple OSS Distributions T_META_REQUIRES_SYSCTL_EQ("kern.development", 1), 14*c54f35caSApple OSS Distributions T_META_BOOTARGS_SET("entropy-analysis-sample-count=1000")) 15*c54f35caSApple OSS Distributions { 16*c54f35caSApple OSS Distributions int ret; 17*c54f35caSApple OSS Distributions uint32_t entropy_size = 0; 18*c54f35caSApple OSS Distributions size_t size = sizeof(entropy_size); 19*c54f35caSApple OSS Distributions 20*c54f35caSApple OSS Distributions ret = sysctlbyname("kern.entropy.analysis.buffer_size", &entropy_size, &size, NULL, 0); 21*c54f35caSApple OSS Distributions T_ASSERT_POSIX_SUCCESS(ret, "sysctlbyname kern.entropy.analysis.buffer_size"); 22*c54f35caSApple OSS Distributions 23*c54f35caSApple OSS Distributions uint32_t entropy_count = entropy_size / sizeof(entropy_sample_t); 24*c54f35caSApple OSS Distributions entropy_sample_t *entropy = calloc(entropy_count, sizeof(entropy_sample_t)); 25*c54f35caSApple OSS Distributions size = entropy_size; 26*c54f35caSApple OSS Distributions 27*c54f35caSApple OSS Distributions ret = sysctlbyname("kern.entropy.analysis.buffer", entropy, &size, NULL, 0); 28*c54f35caSApple OSS Distributions T_ASSERT_POSIX_SUCCESS(ret, "sysctlbyname kern.entropy.analysis.buffer"); 29*c54f35caSApple OSS Distributions 30*c54f35caSApple OSS Distributions // This test is not an entropy assessment. We're just checking to 31*c54f35caSApple OSS Distributions // make sure the machinery of the entropy collection sysctl seems 32*c54f35caSApple OSS Distributions // to be working. 33*c54f35caSApple OSS Distributions for (uint32_t i = 0; i < entropy_count; i += 1) { 34*c54f35caSApple OSS Distributions T_QUIET; T_EXPECT_NE(entropy[i], 0, "entropy buffer null sample %u", i); 35*c54f35caSApple OSS Distributions } 36*c54f35caSApple OSS Distributions 37*c54f35caSApple OSS Distributions free(entropy); 38*c54f35caSApple OSS Distributions } 39*c54f35caSApple OSS Distributions 40*c54f35caSApple OSS Distributions T_DECL(entropy_filter_rate, "Sample entropy filter rate") 41*c54f35caSApple OSS Distributions { 42*c54f35caSApple OSS Distributions int ret; 43*c54f35caSApple OSS Distributions uint64_t total_sample_count = 0; 44*c54f35caSApple OSS Distributions uint64_t rejected_sample_count = 0; 45*c54f35caSApple OSS Distributions size_t size = sizeof(total_sample_count); 46*c54f35caSApple OSS Distributions 47*c54f35caSApple OSS Distributions ret = sysctlbyname("kern.entropy.filter.total_sample_count", &total_sample_count, &size, NULL, 0); 48*c54f35caSApple OSS Distributions T_ASSERT_POSIX_SUCCESS(ret, "kern.entropy.filter.total_sample_count"); 49*c54f35caSApple OSS Distributions 50*c54f35caSApple OSS Distributions size = sizeof(rejected_sample_count); 51*c54f35caSApple OSS Distributions ret = sysctlbyname("kern.entropy.filter.rejected_sample_count", &rejected_sample_count, &size, NULL, 0); 52*c54f35caSApple OSS Distributions T_ASSERT_POSIX_SUCCESS(ret, "kern.entropy.filter.rejected_sample_count"); 53*c54f35caSApple OSS Distributions 54*c54f35caSApple OSS Distributions double rejection_rate = (double) rejected_sample_count / (double) total_sample_count; 55*c54f35caSApple OSS Distributions 56*c54f35caSApple OSS Distributions pdwriter_t writer = pdwriter_open_tmp("xnu", "entropy_filter_rate", 0, 0, NULL, 0); 57*c54f35caSApple OSS Distributions T_ASSERT_NOTNULL(writer, "pdwriter_open_tmp"); 58*c54f35caSApple OSS Distributions 59*c54f35caSApple OSS Distributions pdwriter_new_value(writer, "Rejection Rate", PDUNIT_CUSTOM(rejectrate), rejection_rate); 60*c54f35caSApple OSS Distributions 61*c54f35caSApple OSS Distributions pdwriter_close(writer); 62*c54f35caSApple OSS Distributions } 63