Re: [Security] [patch] random: make get_random_int() more random

From: Linus Torvalds
Date: Sat May 16 2009 - 12:19:57 EST

Next message: Luca Tettamanti: "[2.6.30-rc6] cifs_close: NULL pointer dereference"
Previous message: RogÃrio Brito: "[PATCH] powerpc: minimizing the configuration oflinkstation_defconfig"
In reply to: Linus Torvalds: "Re: [Security] [patch] random: make get_random_int() more random"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sat, 16 May 2009, Linus Torvalds wrote:
>
> So "one of X known functions" does not help

Side note - here the keyword is "X known functions". If the function
simply isn't known at all, you've now made it harder by a _much_ higher
factor. If the function is any good (ie doesn't leave any patterns to
guess what function it is), you really basically have to first solve that
independent problem.

And the space of possible functions is pretty damn large, even if you
start with some assumption ("some combination of known good cryptographic
hashes + some unknown seeding algorithm and data").

So practically speaking, nobody ever cracks those things without somehow
decoding the function itself (through doing something like disassembling
obfuscated code).

Linus
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Luca Tettamanti: "[2.6.30-rc6] cifs_close: NULL pointer dereference"
Previous message: RogÃrio Brito: "[PATCH] powerpc: minimizing the configuration oflinkstation_defconfig"
In reply to: Linus Torvalds: "Re: [Security] [patch] random: make get_random_int() more random"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]