Re: Entropy Pool Contents

From: Phillip Susi
Date: Mon Nov 27 2006 - 15:38:27 EST

Next message: Mark Gross: "Re: [PATCH] tlclk: fix platform_device_register_simple() error check"
Previous message: Robert Crocombe: "Re: ieee1394: host adapter disappears on 1394 bus reset"
In reply to: David Wagner: "Re: Entropy Pool Contents"
Next in thread: David Wagner: "Re: Entropy Pool Contents"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

David Wagner wrote:

Nope, I don't think so. If they could, that would be a security hole,
but /dev/{,u}random was designed to try to make this impossible, assuming
the cryptographic algorithms are secure.

After all, some of the entropy sources come from untrusted sources and
could be manipulated by an external adversary who doesn't have any
account on your machine (root or non-root), so the scheme has to be
secure against introduction of maliciously chosen samples in any event.

Assuming it works because it would be a bug if it didn't is a logical fallacy. Either the new entropy pool is guaranteed to be improved by injecting data or it isn't. If it is, then only root should be allowed to inject data. If it isn't, then the entropy estimate should increase when the pool is stirred.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Mark Gross: "Re: [PATCH] tlclk: fix platform_device_register_simple() error check"
Previous message: Robert Crocombe: "Re: ieee1394: host adapter disappears on 1394 bus reset"
In reply to: David Wagner: "Re: Entropy Pool Contents"
Next in thread: David Wagner: "Re: Entropy Pool Contents"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]