| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 23 May 2011 12:02:41 -0700 From: Ray Lee <ray-lk@...rabbit.org> To: Ingo Molnar <mingo@...e.hu> Cc: Dan Rosenberg <drosenberg@...curity.com>, Tony Luck <tony.luck@...il.com>, linux-kernel@...r.kernel.org, davej@...hat.com, kees.cook@...onical.com, davem@...emloft.net, eranian@...gle.com, torvalds@...ux-foundation.org, adobriyan@...il.com, penberg@...nel.org, hpa@...or.com, Arjan van de Ven <arjan@...radead.org>, Andrew Morton <akpm@...ux-foundation.org> Subject: Re: [BUG] perf: bogus correlation of kernel symbols On Mon, May 23, 2011 at 3:49 AM, Ingo Molnar <mingo@...e.hu> wrote: > Well, since entropy does not get reduced on addition of independent variables > the right sequence is (pseudocode): > > rnd = entropy_cycles(); > rnd += entropy_rdrand(); > rnd += entropy_RTC(); > rnd += entropy_system(); I think you mean concatenation rather than addition? Or perhaps XOR, or a hash? It's pretty easy to show that the addition of n random variables evenly distributed between [0, 1] converges to 1/2 n +- 1/sqrt(n) (or numbers to that effect), which gives an attacker better chances than they would otherwise if they target the center of the distribution. But none of this is to detract from your main point, which still holds. Structuring it such that other sources of randomness can be included as available keeps options open. ~r. -- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@...r.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/
Powered by blists - more mailing lists