From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <SRS0=9KUO=BP=vger.kernel.org=netdev-owner@kernel.org>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
	aws-us-west-2-korg-lkml-1.web.codeaurora.org
X-Spam-Level: 
X-Spam-Status: No, score=-4.1 required=3.0 tests=BAYES_00,DKIMWL_WL_HIGH,
	DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,HEADER_FROM_DIFFERENT_DOMAINS,
	MAILING_LIST_MULTI,SPF_HELO_NONE,SPF_PASS autolearn=no autolearn_force=no
	version=3.4.0
Received: from mail.kernel.org (mail.kernel.org [198.145.29.99])
	by smtp.lore.kernel.org (Postfix) with ESMTP id 7D674C433E0
	for <netdev@archiver.kernel.org>; Wed,  5 Aug 2020 20:02:15 +0000 (UTC)
Received: from vger.kernel.org (vger.kernel.org [23.128.96.18])
	by mail.kernel.org (Postfix) with ESMTP id 5859C2076E
	for <netdev@archiver.kernel.org>; Wed,  5 Aug 2020 20:02:15 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=kernel.org;
	s=default; t=1596657735;
	bh=0HRx0LtOoA7fVpEtZ6vAM7JisoeNT6NiywOatxpD3t0=;
	h=References:In-Reply-To:From:Date:Subject:To:Cc:List-ID:From;
	b=Gx6RJFtfrCjehfevy6S17V8g/76MTVorNkSz2KdY3oj8Wu911oTB2Gz+ll7y6s6Dp
	 CpQwM7XKqCfT4DTc0UyI7iFhIhfvk8E5WWlYeK4Vrzhf4Msfqfd38Xrc+3IyEwrzYz
	 TLfvePYCKX+dMajDEePVhNE1tjPrzlUGa0Jgfvb8=
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S1728112AbgHEUCO (ORCPT <rfc822;netdev@archiver.kernel.org>);
        Wed, 5 Aug 2020 16:02:14 -0400
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:45334 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S1725930AbgHEQjj (ORCPT
        <rfc822;netdev@vger.kernel.org>); Wed, 5 Aug 2020 12:39:39 -0400
Received: from mail-lj1-x242.google.com (mail-lj1-x242.google.com [IPv6:2a00:1450:4864:20::242])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 89BF5C008688
        for <netdev@vger.kernel.org>; Wed,  5 Aug 2020 09:39:39 -0700 (PDT)
Received: by mail-lj1-x242.google.com with SMTP id h19so48445743ljg.13
        for <netdev@vger.kernel.org>; Wed, 05 Aug 2020 09:39:39 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=linux-foundation.org; s=google;
        h=mime-version:references:in-reply-to:from:date:message-id:subject:to
         :cc;
        bh=0zVZoAJleV8CNiiAXe/D7u75xP/RUF3FAzG59wLhYYQ=;
        b=EmG0TRtgM35UxzdU5qpsjvfMfFCNu2ktBs1L4qK25LD0vVz5X++gIch5TpxjZIFGLA
         FONDWlHzc4Vu1S1/6UyavVOfZiUN8VKq+L1vfIuNURR15mfH0NF7IefEfsn3niecsB7Q
         ZVvfoS0Gu2SspEs2b8rYCXqagVABulslM86hY=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:mime-version:references:in-reply-to:from:date
         :message-id:subject:to:cc;
        bh=0zVZoAJleV8CNiiAXe/D7u75xP/RUF3FAzG59wLhYYQ=;
        b=UhrRFesrYW3V4bTUL5qb8FMhxCVjLx+to7IF5MNCtPxK5qrsaELGkNzVhp+4dCcFMb
         DbtM4LbNinzAz4xbxeF8wz9C8Dkr/16LMsgncNI9wv2XHGVhAeb6x6DA9P7zlUGCYtEA
         DRGfxMjCkGsojzmevBjSjv81LivEsr20GysFNNaUFAa4NtSZncf8gE6urH/T1EWGdEEA
         b9EKeyQXAs/uWOZUpuOSPF4quUXWXqjRaO9W/gjuIIuaQq6ktR3rLLk5S7QoN/aQOEOQ
         oAWa8hYc62EX3SLQxWSy0Bz5gtr+/j0+cJQ0sA0H8/a8cVIf/3II9ndHR2VOpkzA6oJv
         EXlQ==
X-Gm-Message-State: AOAM5331V0SvTZlkCOHiRGIp/y77XAy57eA33CS9OQkXBoQcKgOcHApb
        FX76uJGuAVUPK+3cHywC9yqifkSBxBQ=
X-Google-Smtp-Source: ABdhPJx/+n3ZlVmsFZ36Xq4q+u86gPXtwBDOXKKIQ6uO2HWAbL2nA4njaR4+DaQZhS9h7vShwJw+dw==
X-Received: by 2002:a2e:9057:: with SMTP id n23mr1791500ljg.445.1596645576496;
        Wed, 05 Aug 2020 09:39:36 -0700 (PDT)
Received: from mail-lj1-f181.google.com (mail-lj1-f181.google.com. [209.85.208.181])
        by smtp.gmail.com with ESMTPSA id s9sm1087704ljh.46.2020.08.05.09.39.34
        for <netdev@vger.kernel.org>
        (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128);
        Wed, 05 Aug 2020 09:39:35 -0700 (PDT)
Received: by mail-lj1-f181.google.com with SMTP id 185so38213403ljj.7
        for <netdev@vger.kernel.org>; Wed, 05 Aug 2020 09:39:34 -0700 (PDT)
X-Received: by 2002:a2e:9a11:: with SMTP id o17mr1798783lji.314.1596645574541;
 Wed, 05 Aug 2020 09:39:34 -0700 (PDT)
MIME-Version: 1.0
References: <9f74230f-ba4d-2e19-5751-79dc2ab59877@gmail.com>
 <20200805024941.GA17301@1wt.eu> <66f06ea1-3221-5661-e0de-6eef45ac3664@gmail.com>
In-Reply-To: <66f06ea1-3221-5661-e0de-6eef45ac3664@gmail.com>
From:   Linus Torvalds <torvalds@linux-foundation.org>
Date:   Wed, 5 Aug 2020 09:39:17 -0700
X-Gmail-Original-Message-ID: <CAHk-=wgcBW-VkiF+gQETt7UpZcEZtHNwbbKcN9jxKUQRUQersw@mail.gmail.com>
Message-ID: <CAHk-=wgcBW-VkiF+gQETt7UpZcEZtHNwbbKcN9jxKUQRUQersw@mail.gmail.com>
Subject: Re: Flaw in "random32: update the net random state on interrupt and activity"
To:     Marc Plumb <lkml.mplumb@gmail.com>
Cc:     Willy Tarreau <w@1wt.eu>, "Theodore Ts'o" <tytso@mit.edu>,
        Netdev <netdev@vger.kernel.org>,
        Amit Klein <aksecurity@gmail.com>,
        Eric Dumazet <edumazet@google.com>,
        "Jason A. Donenfeld" <Jason@zx2c4.com>,
        Andrew Lutomirski <luto@kernel.org>,
        Kees Cook <keescook@chromium.org>,
        Thomas Gleixner <tglx@linutronix.de>,
        Peter Zijlstra <peterz@infradead.org>,
        stable <stable@vger.kernel.org>
Content-Type: text/plain; charset="UTF-8"
Sender: netdev-owner@vger.kernel.org
Precedence: bulk
List-ID: <netdev.vger.kernel.org>
X-Mailing-List: netdev@vger.kernel.org

On Wed, Aug 5, 2020 at 8:44 AM Marc Plumb <lkml.mplumb@gmail.com> wrote:
>
> I thought net_rand_state was assumed to be insecure and that anyone
> could determine the internal state. Isn't this Working as Designed?

I was working as designed - because it wasn't really designed to be
"real crypto" - but sadly it's also the only thing that is fast enough
for a lot of networking.

So it may be _designed_ to be "not real crypto" and to have a
discoverable internal state. But once again, reality interferes, and
it turns out that people really want something very very fast that is
also not deterministic enough to be discoverable at least remotely.

The stuff that is actually designed and intended to be a complete
black box is sadly also much too slow. By about an order of magnitude.

           Linus