| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Mon, 2 May 2016 05:00:47 -0400 From: Jeffrey Walton <noloader@...il.com> To: "Theodore Ts'o" <tytso@....edu> Cc: linux-kernel@...r.kernel.org, Stephan Mueller <smueller@...onox.de>, Herbert Xu <herbert@...dor.apana.org.au>, andi@...stfloor.org, Sandy Harris <sandyinchina@...il.com>, cryptography@...edaemon.net, jsd@...n.com, hpa@...or.com, linux-crypto@...r.kernel.org, Stephan Mueller <stephan.mueller@...ec.com> Subject: Re: [PATCH 3/3] random: add interrupt callback to VMBus IRQ handler On Mon, May 2, 2016 at 2:26 AM, Theodore Ts'o <tytso@....edu> wrote: > From: Stephan Mueller <smueller@...onox.de> > > The Hyper-V Linux Integration Services use the VMBus implementation for > communication with the Hypervisor. VMBus registers its own interrupt > handler that completely bypasses the common Linux interrupt handling. > This implies that the interrupt entropy collector is not triggered. > ... Stephan correctly identified the problem of virtualized environments in his paper, but there does not appear to be any real defenses in place for VM rollback attacks. Perhpas the following will make interesting reading: * When Virtual is Harder than Real: Security Challenges in Virtual Machine Based Computing Environments, https://www.usenix.org/legacy/event/hotos05/final_papers/full_papers/garfinkel/garfinkel.pdf * When Good Randomness Goes Bad: Virtual Machine Reset Vulnerabilities and Hedging Deployed Cryptography, http://pages.cs.wisc.edu/~rist/papers/sslhedge.pdf Jeff
Powered by blists - more mailing lists