From: Pavel Machek <pavel@ucw.cz>
To: Stephan M?ller <smueller@chronox.de>
Cc: Arnd Bergmann <arnd@arndb.de>,
Greg Kroah-Hartman <gregkh@linuxfoundation.org>,
linux-crypto@vger.kernel.org, LKML <linux-kernel@vger.kernel.org>,
linux-api@vger.kernel.org,
"Eric W. Biederman" <ebiederm@xmission.com>,
"Alexander E. Patrakov" <patrakov@gmail.com>,
"Ahmed S. Darwish" <darwish.07@gmail.com>,
"Theodore Y. Ts'o" <tytso@mit.edu>, Willy Tarreau <w@1wt.eu>,
Matthew Garrett <mjg59@srcf.ucam.org>,
Vito Caputo <vcaputo@pengaru.com>,
Andreas Dilger <adilger.kernel@dilger.ca>,
Jan Kara <jack@suse.cz>, Ray Strode <rstrode@redhat.com>,
William Jon McCann <mccann@jhu.edu>,
zhangjs <zachary@baishancloud.com>,
Andy Lutomirski <luto@kernel.org>,
Florian Weimer <fweimer@redhat.com>,
Lennart Poettering <mzxreary@0pointer.de>,
Nicolai Stange <nstange@suse.de>,
"Peter, Matthias" <matthias.peter@bsi.bund.de>,
Marcelo Henrique Cerri <marcelo.cerri@canonical.com>,
Roman Drahtmueller <draht@schaltsekun.de>,
Neil Horman <nhorman@redhat.com>,
Randy Dunlap <rdunlap@infradead.org>,
Julia Lawall <julia.lawall@inria.fr>,
Dan Carpenter <dan.carpenter@oracle.com>
Subject: Re: [PATCH v31 00/12] /dev/random - a new approach with full SP800-90B
Date: Tue, 28 Jul 2020 22:40:44 +0200 [thread overview]
Message-ID: <20200728204044.GD1012@bug> (raw)
In-Reply-To: <2050754.Mh6RI2rZIc@positron.chronox.de>
Hi!
> The following patch set provides a different approach to /dev/random which is called
> Linux Random Number Generator (LRNG) to collect entropy within the Linux kernel. The
> main improvements compared to the existing /dev/random is to provide sufficient entropy
> during boot time as well as in virtual environments and when using SSDs. A secondary
> design goal is to limit the impact of the entropy collection on massive parallel systems
> and also allow the use accelerated cryptographic primitives. Also, all steps of the
> entropic data processing are testable.
That sounds good.. maybe too good. Where does LRNG get the entropy? That is the
part that should be carefully documented..
Pavel
--
(english) http://www.livejournal.com/~pavelmachek
(cesky, pictures) http://atrey.karlin.mff.cuni.cz/~pavel/picture/horses/blog.html
next prev parent reply other threads:[~2020-07-28 20:40 UTC|newest]
Thread overview: 15+ messages / expand[flat|nested] mbox.gz Atom feed top
2020-07-13 6:17 [PATCH v31 00/12] /dev/random - a new approach with full SP800-90B Stephan Müller
2020-07-13 6:17 ` [PATCH v31 01/12] Linux Random Number Generator Stephan Müller
2020-07-13 6:18 ` [PATCH v31 02/12] LRNG - allocate one DRNG instance per NUMA node Stephan Müller
2020-07-13 6:18 ` [PATCH v31 03/12] LRNG - sysctls and /proc interface Stephan Müller
2020-07-13 6:19 ` [PATCH v31 04/12] LRNG - add switchable DRNG support Stephan Müller
2020-07-13 6:19 ` [PATCH v31 05/12] crypto: DRBG - externalize DRBG functions for LRNG Stephan Müller
2020-07-13 6:19 ` [PATCH v31 06/12] LRNG - add SP800-90A DRBG extension Stephan Müller
2020-07-13 6:20 ` [PATCH v31 07/12] LRNG - add kernel crypto API PRNG extension Stephan Müller
2020-07-13 6:20 ` [PATCH v31 08/12] crypto: provide access to a static Jitter RNG state Stephan Müller
2020-07-13 6:21 ` [PATCH v31 09/12] LRNG - add Jitter RNG fast noise source Stephan Müller
2020-07-13 6:21 ` [PATCH v31 10/12] LRNG - add SP800-90B compliant health tests Stephan Müller
2020-07-13 6:21 ` [PATCH v31 11/12] LRNG - add interface for gathering of raw entropy Stephan Müller
2020-07-13 6:22 ` [PATCH v31 12/12] LRNG - add power-on and runtime self-tests Stephan Müller
2020-07-28 20:40 ` Pavel Machek [this message]
2020-07-29 7:15 ` [PATCH v31 00/12] /dev/random - a new approach with full SP800-90B Stephan Mueller
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20200728204044.GD1012@bug \
--to=pavel@ucw.cz \
--cc=adilger.kernel@dilger.ca \
--cc=arnd@arndb.de \
--cc=dan.carpenter@oracle.com \
--cc=darwish.07@gmail.com \
--cc=draht@schaltsekun.de \
--cc=ebiederm@xmission.com \
--cc=fweimer@redhat.com \
--cc=gregkh@linuxfoundation.org \
--cc=jack@suse.cz \
--cc=julia.lawall@inria.fr \
--cc=linux-api@vger.kernel.org \
--cc=linux-crypto@vger.kernel.org \
--cc=linux-kernel@vger.kernel.org \
--cc=luto@kernel.org \
--cc=marcelo.cerri@canonical.com \
--cc=matthias.peter@bsi.bund.de \
--cc=mccann@jhu.edu \
--cc=mjg59@srcf.ucam.org \
--cc=mzxreary@0pointer.de \
--cc=nhorman@redhat.com \
--cc=nstange@suse.de \
--cc=patrakov@gmail.com \
--cc=rdunlap@infradead.org \
--cc=rstrode@redhat.com \
--cc=smueller@chronox.de \
--cc=tytso@mit.edu \
--cc=vcaputo@pengaru.com \
--cc=w@1wt.eu \
--cc=zachary@baishancloud.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.