Re: Concurrent access to /dev/urandom

• Previous message: Adam Heath: "Re: Concurrent access to /dev/urandom"
• In reply to: Matt Mackall: "Re: Concurrent access to /dev/urandom"
• Next in thread: Matt Mackall: "Re: Concurrent access to /dev/urandom"
• Reply: Matt Mackall: "Re: Concurrent access to /dev/urandom"
• Reply: Theodore Ts'o: "Re: Concurrent access to /dev/urandom"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Date:	Fri, 10 Dec 2004 18:22:37 -0600 (CST)
To: Matt Mackall <mpm@selenic.com>

On Fri, 10 Dec 2004, Matt Mackall wrote:

> On Fri, Dec 10, 2004 at 04:28:15PM -0500, Theodore Ts'o wrote:
> > On Fri, Dec 10, 2004 at 10:28:04AM -0800, Matt Mackall wrote:
> > >
> > > Fair enough. s/__add/mix/, please.
> > >
> >
> > Why? Fundamentally, it's all about adding entropy to the pool. I
> > don't have an strong objection to calling it __mix_entropy_words, but
> > if we're going to change it, we should change the non-__ variant for
> > consistency's sake, and I'd much rather do that in a separate patch if
> > we're going to do it all. I don't see the point of the rename,
> > though.
>
> I suppose I don't really care. The __add is no longer just add, and
> mix was the word that came to mind. But it doesn't really describe it
> well either.
>
> > Still, I'd feel better if we did initialize more data via
> > init_std_data(), and then cranked the LFSR some number of times so
> > that we don't have to worry about analyzing the case where a good
> > portion of the pool might contain consecutive zero values. But yeah,
> > we can save that for another patch, as it's not absolutely essential.
> >
> > Are we converging here?
>
> I'm gonna call this last iteration done. Repasted below for akpm's
> benefit. Urgency: medium-ish.

Actually, I think this is a security issue. Since any plain old program can
read from /dev/urandom at any time, an attacker could attempt to read from
that device at the same moment some other program is doing so, and thereby
gain some knowledge as to the other program's state.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

• Previous message: Adam Heath: "Re: Concurrent access to /dev/urandom"
• In reply to: Matt Mackall: "Re: Concurrent access to /dev/urandom"
• Next in thread: Matt Mackall: "Re: Concurrent access to /dev/urandom"
• Reply: Matt Mackall: "Re: Concurrent access to /dev/urandom"
• Reply: Theodore Ts'o: "Re: Concurrent access to /dev/urandom"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Relevant Pages RE: [ANNOUNCE][RELEASE]: megaraid unified driver version 2.20.0.B 1 ... >OK, I have started to look at this driver, I have come across one ... >memory from the pool is in use", however, they don't have to guarantee ... >that pool is not null. ... send the line "unsubscribe linux-kernel" in ... (Linux-Kernel) Re: Concurrent access to /dev/urandom ... >> But it turns out that we can do this without hashing under the lock ... The polynomial for the output pools is dense enough that even ... I was hoping to abolish the pool clearing ... send the line "unsubscribe linux-kernel" in ... (Linux-Kernel) Re: [RFC] mempool_alloc() pre-allocated object usage ... > to determine pre-allocated object usage?) ... pool for the really emergency cases. ... Technically a mempool is there ONLY for the fallback, ... send the line "unsubscribe linux-kernel" in ... (Linux-Kernel) Re: [RFC] ip / ifconfig redesign ... On Fri, 2 Dec 2005, Al Boldi wrote: ... Allow the definition of an address pool ... -- George R.R. Martin: A Clash of Kings ... send the line "unsubscribe linux-kernel" in ... (Linux-Kernel) Re: IPT on TV News Release ... More pool and less up close ... And for god's sake keep Kevin Trudeau out of the broadcast ... loud "AMEN!" ... (rec.sport.billiard)