Re: Why does reading from /dev/urandom deplete entropy so much?

On Tue, Dec 04, 2007 at 04:12:51PM -0600, Mike McGrath wrote:
Theodore Tso wrote:
On Tue, Dec 04, 2007 at 02:48:12PM -0600, Mike McGrath wrote:

Alan Cox wrote:

Here's the top 5:

266 28caf2c3-9766-4fe1-9e4c-d6b0ba8a0132
336 810e7126-1c69-4aff-b8b1-9db0fa8aa15a
402 c8dbb9d3-a9bd-4ba6-b92e-4a294ba5a95f
884 06e84493-e024-44b1-9b32-32d78af04039
931 e2b67e1d-e325-4740-b938-795addb45280

The left number is times this month someone has submitted a profile with
that UUID. If we take the last one as an example has come from over 800
IP's in the last 20 days. It seems very unlikely that one person would
find his way to 800 different IP's this month. Let me know if you'd
like more.


Background - Smolt runs this during its install:

/bin/cat /proc/sys/kernel/random/uuid > /etc/sysconfig/hw-uuid

For most users this would be run by the RPM %post scripts during install
from anaconda. For some reason there are some UUID's (like those listed
above) that come up more often then it seems they should if they are
truly random.


Would this be by any chance using kickstart where there is no user
interaction, and no way of gathering entropy during the install process?
The random number generator isn't *magic* you know....


This is certainly possible but I think its unlikely. Not many people
know about smolt. Most of our profiles come from prompting people during
firstboot which gets skipped when people are running kickstart. I'll
make sure to follow up with people that report a duplicate.

Please describe the process from boot to writing the UUID. Are we
typically booting from R/O media? Is a random reseed done in the
startup scripts? What is the source of the seed? How much user
interaction is there?

If we have entropy input below the reseed threshold, we can get
duplicates. That means we could have like a dozen or more keystrokes.
Serial consoles and the like will also be problematic.

--
Mathematics is the supreme nostalgia of our time.
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Relevant Pages

  • Re: Why does reading from /dev/urandom deplete entropy so much?
    ... The left number is times this month someone has submitted a profile with ... that UUID. ... and no way of gathering entropy during the install process? ...
    (Linux-Kernel)
  • Re: Why does reading from /dev/urandom deplete entropy so much?
    ... Theodore Tso wrote: ... The left number is times this month someone has submitted a profile with ... that UUID. ... and no way of gathering entropy during the install process? ...
    (Linux-Kernel)
  • How do I delete duplicate personal folders
    ... even removing email accounts is distressing. ... Outlook 2003 with my office and home email accounts. ... because I have been using the new computer for 2 weeks and the profile on the ... Deleting one inbox deletes it in both of the duplicate proviles. ...
    (microsoft.public.outlook.general)
  • Re: Duplicate Folders
    ... procedure to take care of the duplicate folder issue and now I created other ... the same thing has happened to the other folders like Task or Notes or the ... > same account you used with your old profile. ... > and only point it to the .PST files you actually use. ...
    (microsoft.public.office.misc)
  • Re: Outlook displays two identical Personal Folders
    ... I tried creating a new profile and directing my mail to it, ... Migrating PST files is a real weak point in Outlook. ... sometimes if you choose to Archive you Personal Folder. ... I would like to know what might be causing this duplicate folder ...
    (microsoft.public.outlook.installation)