lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  PHC 
Open Source and information security mailing list archives
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date:	Thu, 17 Jul 2014 10:45:22 -0700
From:	Andy Lutomirski <>
To:	Andrew Honig <>
Cc:	kvm <>, "H. Peter Anvin" <>,
	"Theodore Ts'o" <>,
	"" <>,
	Kees Cook <>, X86 ML <>,
	Daniel Borkmann <>,
	Srivatsa Vaddagiri <>,
	Raghavendra K T <>,
	Gleb Natapov <>,
	Paolo Bonzini <>,
	Bandan Das <>
Subject: Re: [PATCH v3 1/5] x86,kvm: Add MSR_KVM_GET_RNG_SEED and a matching
 feature bit

On Thu, Jul 17, 2014 at 10:43 AM, Andrew Honig <> wrote:
>> +       case MSR_KVM_GET_RNG_SEED:
>> +               get_random_bytes(&data, sizeof(data));
>> +               break;
> Should this be rate limited in the interest of conserving randomness?
> If there ever is an attack on the prng, this would create very
> favorable conditions for an attacker to exploit it.

IMO if the nonblocking pool has a weakness that requires us to
conserve its output, then this is the least of our worries.

To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to
More majordomo info at
Please read the FAQ at

Powered by blists - more mailing lists