| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Fri, 11 Sep 2009 14:13:04 -0700
From: "Rose, Gregory V" <gregory.v.rose@...el.com>
To: Joe Perches <joe@...ches.com>, David Miller <davem@...emloft.net>
CC: "shemminger@...tta.com" <shemminger@...tta.com>,
"Kirsher, Jeffrey T" <jeffrey.t.kirsher@...el.com>,
"netdev@...r.kernel.org" <netdev@...r.kernel.org>,
"gospo@...hat.com" <gospo@...hat.com>,
"Skidmore, Donald C" <donald.c.skidmore@...el.com>
Subject: RE: [net-next PATCH V2] etherdevice.h: random_ether_addr update
The addresses generated here will likely never be used in a production environment. They are place holders so that the device will function before any management console has done what 99.9% of all vendors will do, which is assign their own address. OK, that 99% is not a real number, but consider it illustrative of the fact that almost all VMM vendors will assign their own MAC addresses.
They're useful for test and development and that's about it. We're in discussion with partners about how best to approach the management interface for this and each vendor has his own preferred approach (which complicates the solution) but for now the accepted method is for the igbvf driver to set it's own assigned MAC address in the guest.
The discussion is useful but I think we should keep in mind that the addresses in question will be transitory in nature, likely to be never used except for test and development.
One thing, the original patch described it as ncessary to help prevent collisions among MAC address and this is incorrect. It was intended to help reduce collisions with other vendors MAC addresses. If the list doesn't consider that a worth while goal then we can withdraw the patch or take one of the suggested permutations.
Thanks,
- Greg Rose
LAN Access Division
Intel Corp.
-----Original Message-----
From: Joe Perches [mailto:joe@...ches.com]
Sent: Friday, September 11, 2009 1:44 PM
To: David Miller
Cc: shemminger@...tta.com; Kirsher, Jeffrey T; netdev@...r.kernel.org; gospo@...hat.com; Rose, Gregory V; Skidmore, Donald C
Subject: Re: [net-next PATCH V2] etherdevice.h: random_ether_addr update
Perhaps this is slightly better, it doesn't call
random32 for each octet and makes sure the leading
octet is >= 0x04.
random_ether_address should assign a leading octet >= "0x04"
Does not use get_random_bytes to avoid drawing down entropy pool.
Signed-off-by: Joe Perches <joe@...ches.com>
diff --git a/include/linux/etherdevice.h b/include/linux/etherdevice.h
index 3d7a668..fddcabf 100644
--- a/include/linux/etherdevice.h
+++ b/include/linux/etherdevice.h
@@ -121,9 +121,26 @@ static inline int is_valid_ether_addr(const u8 *addr)
*/
static inline void random_ether_addr(u8 *addr)
{
- get_random_bytes (addr, ETH_ALEN);
- addr [0] &= 0xfe; /* clear multicast bit */
- addr [0] |= 0x02; /* set local assignment bit (IEEE802) */
+ u32 val;
+
+ /* not calling get_random_bytes to avoid using entropy */
+ do {
+ val = random32();
+ addr[0] = val;
+ } while (addr[0] < 4);
+ addr[0] &= 0xfe; /* clear multicast bit */
+ addr[0] |= 0x02; /* set local assignment bit (IEEE802) */
+
+ val >>= 8;
+ addr[1] = val;
+ val >>= 8;
+ addr[2] = val;
+ val >>= 8;
+ addr[3] = val;
+ val = random32();
+ addr[4] = val;
+ val >>= 8;
+ addr[5] = val;
}
/**
--
To unsubscribe from this list: send the line "unsubscribe netdev" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists