Re: x86/random: Speculation to the rescue

From: Theodore Y. Ts'o
Date: Wed Oct 02 2019 - 08:01:48 EST

Next message: Arnd Bergmann: "[PATCH 0/6] amdgpu build fixes"
Previous message: Linus Walleij: "Re: [PATCH] input: ixp4xx-beeper: include linux/io.h"
In reply to: Pavel Machek: "Re: x86/random: Speculation to the rescue"
Next in thread: Pavel Machek: "Re: x86/random: Speculation to the rescue"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, Oct 01, 2019 at 06:15:02PM +0200, Ahmed S. Darwish wrote:
>
> Using the "ent" tool, [2] also used to test randomness in the Stephen
> Müller LRNG paper, on a 500000-byte file, produced the following
> results:

The "ent" tool is really, really useless. If you take any CRNG, even
intialized with a known seed, "ent" will say that it's *GREAT*!

If you don't believe me, disable all entropy inputs into the CRNG,
initialize it with "THE NSA IS OUR LORD AND MASTER", and then run it.
You'll get substantially the same results. (And if we didn't the Cha
Cha 20 encryption algorithm would be totally broken).

- Ted

Next message: Arnd Bergmann: "[PATCH 0/6] amdgpu build fixes"
Previous message: Linus Walleij: "Re: [PATCH] input: ixp4xx-beeper: include linux/io.h"
In reply to: Pavel Machek: "Re: x86/random: Speculation to the rescue"
Next in thread: Pavel Machek: "Re: x86/random: Speculation to the rescue"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]