Re: [PATCH] CPU Jitter RNG: inclusion into kernel crypto API and /dev/random
From: Stephan Mueller
Date: Wed Nov 06 2013 - 06:50:00 EST
Am Dienstag, 5. November 2013, 13:20:57 schrieb Stephan Mueller:
Hi Ted,
>Am Sonntag, 3. November 2013, 07:41:35 schrieb Theodore Ts'o:
>
>Hi Theodore,
>
>>On Sun, Nov 03, 2013 at 08:20:34AM +0100, Stephan Mueller wrote:
>>
>>Sandy Harris pointed out a very good paper that I would definitely
>>recommend that people read:
>>
>>http://lwn.net/images/conf/rtlws11/random-hardware.pdf
>>
>>It basically describes some efforts made in 2009 by folks to do
>>exactly the sort of experiments I was advocating. What I actually
>
>I am wondering whether you have seen my last measurements where I
>effectively performed the tests you were asking for: disabling all
>possible CPU features and selectively enabling them.
>
>The tests described in the above mentioned documents and much more are
>all already in the test suite and test results I present here.
After this comment, I got back to one of the authors of the cited paper
(he is in CC).
Here is a quote from his answer to my question whether he was able to
identify the root cause:
"its inherent in the microtiming of Hardware and there is nothing you
can do about it if you want the root cause is quantum physics"
That means, no matter how much CPU support you disable, you will always
have some jitter -- as I showed in my latest test results in appendix
F.46 of [1]. This statement is supported by my tests on even
microkernels which have no other job running than my test application.
Furthermore, as we see that phenomenon on every tested CPU type on every
tested operating system with every tested compiler, I am wondering what
else argument is needed to have this solution considered.
[1] http://www.chronox.de/jent/doc/CPU-Jitter-NPTRNG.html
Ciao
Stephan
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/