Re: random number generator missing after upgrade

To: debian-user@lists.debian.org
Cc: Dan Ritter <dsr@randomstring.org>
Subject: Re: random number generator missing after upgrade
From: Björn Persson <Bjorn@xn--rombobjrn-67a.se>
Date: Mon, 14 Aug 2023 11:26:13 +0200
Message-id: <[🔎] 20230814112613.0cf96c14@tag.xn--rombobjrn-67a.se>
In-reply-to: <[🔎] 34dbc5be-529a-4f47-9a51-3b09040197e2@randomstring.org>
References: <[🔎] 20230813110243.09096fc0@tag.xn--rombobjrn-67a.se> <[🔎] CAH8yC8=_qz7fwBLj2Oh3otP50hrKUE4zvibu3esNco+z4mXkmA@mail.gmail.com> <[🔎] 20230813230808.682fa34c@tag.xn--rombobjrn-67a.se> <[🔎] 34dbc5be-529a-4f47-9a51-3b09040197e2@randomstring.org>

Dan Ritter wrote:
> OK, either boot to the old kernel and look for an rng kernel
> module,

The only loaded module with "rng" in its name is "rng_core". That one
is present in both kernels, but four TPM-related modules are absent
from Linux 6.1:

# uname -v
#1 SMP Debian 5.10.179-3 (2023-07-27)
# lsmod | egrep -i 'rng|tpm'
tpm_crb                20480  0
tpm_tis                16384  0
tpm_tis_core           28672  1 tpm_tis
tpm                    73728  3 tpm_tis,tpm_crb,tpm_tis_core
rng_core               16384  3 ccp,tpm

# uname -v
#1 SMP PREEMPT_DYNAMIC Debian 6.1.38-3 (2023-08-07)
# lsmod | egrep -i 'rng|tpm'
rng_core               20480  1 ccp

And yet /dev/tpm0 exists in both kernels, but disappears when I
physically remove the TPM, so the TPM is recognized to some degree even
without those modules.

Those four TPM-related modules are also present as files under
/lib/modules in Linux 5.10, but absent in Linux 6.1. The corresponding
source files still exist in the source tree. Have they been disabled in
Debian 12? Have they been moved to some "extra modules" package that I
haven't found? Or are they just not modules because they're statically
built-in?

> or identify the rng hardware a little better

As I wrote in my first email, it seems to be an Infineon SLB 9665TT2.0.
It says "SLB9665TT20" on the chip package.

These characters are also written on the package. They mean nothing to
me, but maybe they can be used to identify the hardware better:
G1946KIV
51ZA947148IA1
(It's extremely difficult to tell I from 1 though.)

> and look
> for it in the kernel sources at https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/tree/drivers/char/hw_random

In that directory I don't see anything that looks relevant.

The identifier "tpm-rng-0" comes from tpm_add_hwrng in
drivers/char/tpm/tpm-chip.c, which is still there:

https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git/tree/drivers/char/tpm/tpm-chip.c?h=v6.1&id=830b3c68c1fb1e9176028d02ef86f3cf76aa2476#n517

Other functions in the same source file create /dev/tpm0, and it looks
like the random number generator should get registered together with
the TPM. It's conditional on CONFIG_HW_RANDOM_TPM. Where can I check
the value of that option?

Björn Persson

Attachment: pgp_8K3xCQA6P.pgp
Description: OpenPGP digital signatur

Reply to:

Follow-Ups:
- Re: random number generator missing after upgrade
  - From: David Wright <deblis@lionunicorn.co.uk>

References:
- random number generator missing after upgrade
  - From: Björn Persson <Bjorn@xn--rombobjrn-67a.se>
- Re: random number generator missing after upgrade
  - From: Jeffrey Walton <noloader@gmail.com>
- Re: random number generator missing after upgrade
  - From: Björn Persson <Bjorn@xn--rombobjrn-67a.se>
- Re: Crosshairs in gimp 2.10.22 in Debian 11.7.
  - From: Dan Ritter <dsr@randomstring.org>

Prev by Date: Re: Bootloader error grub minimal bash "load the kernel first" after installing my live image via calamares installer
Next by Date: Re: random number generator missing after upgrade
Previous by thread: Re: Crosshairs in gimp 2.10.22 in Debian 11.7.
Next by thread: Re: random number generator missing after upgrade
Index(es):
- Date
- Thread