| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 22 Feb 2022 23:17:09 +0100
From: "Jason A. Donenfeld" <Jason@...c4.com>
To: adrian@...ity.io
Cc: "open list:DOCUMENTATION" <linux-doc@...r.kernel.org>,
LKML <linux-kernel@...r.kernel.org>,
QEMU Developers <qemu-devel@...gnu.org>,
KVM list <kvm@...r.kernel.org>, linux-s390@...r.kernel.org,
Greg Kroah-Hartman <gregkh@...uxfoundation.org>,
graf@...zon.com, Randy Dunlap <rdunlap@...radead.org>,
Arnd Bergmann <arnd@...db.de>,
"Eric W. Biederman" <ebiederm@...ssion.com>,
Mike Rapoport <rppt@...nel.org>, 0x7f454c46@...il.com,
borntraeger@...ibm.com, Jann Horn <jannh@...gle.com>,
Willy Tarreau <w@....eu>,
Colm MacCarthaigh <colmmacc@...zon.com>,
Andrew Lutomirski <luto@...nel.org>,
"Theodore Ts'o" <tytso@....edu>,
Eric Biggers <ebiggers@...nel.org>,
"Woodhouse, David" <dwmw@...zon.co.uk>, bonzini@....org,
"Singh, Balbir" <sblbir@...zon.com>,
"Weiss, Radu" <raduweis@...zon.com>,
Jonathan Corbet <corbet@....net>,
"Michael S. Tsirkin" <mst@...hat.com>,
Michal Hocko <mhocko@...nel.org>,
"Rafael J. Wysocki" <rafael@...nel.org>,
Pavel Machek <pavel@....cz>,
Michael Ellerman <mpe@...erman.id.au>, areber@...hat.com,
ovzxemul@...il.com, avagin@...il.com, ptikhomirov@...tuozzo.com,
gil@...l.com, asmehra@...hat.com, dgunigun@...hat.com,
vijaysun@...ibm.com, oridgar@...il.com, ghammer@...hat.com,
Adrian Catangiu <acatan@...zon.com>
Subject: Re: [PATCH v7 2/2] drivers/virt: vmgenid: add vm generation id driver
Hey again,
On Tue, Feb 22, 2022 at 10:24 PM Jason A. Donenfeld <Jason@...c4.com> wrote:
> This thread seems to be long dead, but I couldn't figure out what
> happened to the ideas in it. I'm specifically interested in this part:
>
> On Wed, Feb 24, 2021 at 9:48 AM Adrian Catangiu <acatan@...zon.com> wrote:
> > +static void vmgenid_acpi_notify(struct acpi_device *device, u32 event)
> > +{
> > + uuid_t old_uuid;
> > +
> > + if (!device || acpi_driver_data(device) != &vmgenid_data) {
> > + pr_err("VMGENID notify with unexpected driver private data\n");
> > + return;
> > + }
> > +
> > + /* update VM Generation UUID */
> > + old_uuid = vmgenid_data.uuid;
> > + memcpy_fromio(&vmgenid_data.uuid, vmgenid_data.uuid_iomap, sizeof(uuid_t));
> > +
> > + if (memcmp(&old_uuid, &vmgenid_data.uuid, sizeof(uuid_t))) {
> > + /* HW uuid updated */
> > + sysgenid_bump_generation();
> > + add_device_randomness(&vmgenid_data.uuid, sizeof(uuid_t));
> > + }
> > +}
>
> As Jann mentioned in an earlier email, we probably want this to
> immediately reseed the crng, not just dump it into
> add_device_randomness alone. But either way, the general idea seems
> interesting to me. As far as I can tell, QEMU still supports this. Was
> it not deemed to be sufficiently interesting?
>
> Thanks,
> Jason
Well I cleaned up this v7 and refactored it into something along the
lines of what I'm thinking. I don't yet know enough about this general
problem space to propose the patch and I haven't tested it either, but
in case you're curious, something along the lines of what I'm thinking
about lives at https://git.kernel.org/pub/scm/linux/kernel/git/crng/random.git/commit/?h=jd/vmgenid
if you (or somebody else) feels inclined to pick this up.
Looking forward to learning more from you in general, though, about
what the deal is with the VM gen ID, and if this is a real thing or
not.
Regards,
Jason
Powered by blists - more mailing lists