Re: [PATCH] Re: [PATCH] drivers/net: remove network drivers' last few uses of IRQF_SAMPLE_RANDOM | KernelTrap

Re: [PATCH] Re: [PATCH] drivers/net: remove network drivers' last few uses of IRQF_SAMPLE_RANDOM

view
thread

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

[view in full thread]

From: Andi Kleen

Subject: Re: [PATCH] Re: [PATCH] drivers/net: remove network drivers' last few uses of IRQF_SAMPLE_RANDOM

Date: Sunday, May 18, 2008 - 3:13 am

> I think the big kicker is the difference between a session key (short
quoted text> lived) and a "real" key such as a gpg key that lives for a long time
> and is used for multile sessions and with different users (in crypto
> speak, Alice uses the same random key for Bob, Charlotte and David and
> potentially for a long time). For a session key, urandom is very likely
> an acceptable compromise; there's only so much data it's used for.
> For long term keys I can totally see why /dev/random is used instead.

We don't use it for most long term keys, e.g. ssh host keys. That is
because even on high entropy systems /dev/random usually doesn't work
during distribution installation because the system has not run long
enough to collect significant entropy yet.

See also the distinction between "user controlled visible cryptography"
and "background cryptography" I introduced in a earlier mail on that
topic. gpg can only get away with it because they rely on a high level
of user education (so requiring banging on keys is ok), but that's
not really an option for your normal "everyday background crypto",
including longer term keys.

So yes it's a nice theory, but without using the available randomness
sources always it doesn't work.

Instead I think just both urandom and random should try to rely
on TPMs and other hardware rngs and always get high quality bit noise.

-Andi


--
To unsubscribe from this list: send the line "unsubscribe netdev" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

[PATCH] drivers/net: remove network drivers' last few uses ..., Chris Peterson, (Thu May 15, 12:11 am)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Alan Cox, (Thu May 15, 6:21 am)

RE: [PATCH] drivers/net: remove network drivers' last few ..., Brandeburg, Jesse, (Thu May 15, 9:07 am)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Alan Cox, (Thu May 15, 9:39 am)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Jeff Garzik, (Thu May 15, 11:04 am)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Jeff Garzik, (Thu May 15, 11:14 am)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Rick Jones, (Thu May 15, 11:17 am)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Jeff Garzik, (Thu May 15, 11:31 am)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Kok, Auke, (Thu May 15, 11:47 am)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Kok, Auke, (Thu May 15, 11:47 am)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Rick Jones, (Thu May 15, 11:50 am)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Jeff Garzik, (Thu May 15, 12:10 pm)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Jeff Garzik, (Thu May 15, 12:11 pm)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Jeff Garzik, (Thu May 15, 12:21 pm)

[PATCH] Re: [PATCH] drivers/net: remove network drivers' l ..., Jeff Garzik, (Thu May 15, 12:55 pm)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Chris Peterson, (Thu May 15, 1:01 pm)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Jeff Garzik, (Thu May 15, 1:16 pm)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Kok, Auke, (Thu May 15, 1:39 pm)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Theodore Tso, (Thu May 15, 2:47 pm)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Adrian Bunk, (Thu May 15, 2:55 pm)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Jeff Garzik, (Thu May 15, 2:58 pm)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Jeff Garzik, (Thu May 15, 3:04 pm)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Jesper Juhl, (Thu May 15, 3:13 pm)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Theodore Tso, (Thu May 15, 3:27 pm)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Henrique de Moraes H ..., (Thu May 15, 3:29 pm)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Theodore Tso, (Thu May 15, 3:34 pm)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Jeff Garzik, (Thu May 15, 3:42 pm)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Jeff Garzik, (Thu May 15, 3:44 pm)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Jesper Juhl, (Thu May 15, 3:57 pm)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Henrique de Moraes H ..., (Thu May 15, 4:02 pm)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Theodore Tso, (Thu May 15, 4:33 pm)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Theodore Tso, (Thu May 15, 4:36 pm)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Henrique de Moraes H ..., (Thu May 15, 4:46 pm)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Henrique de Moraes H ..., (Thu May 15, 4:58 pm)

Re: [PATCH] Re: [PATCH] drivers/net: remove network driver ..., Andi Kleen, (Thu May 15, 5:27 pm)

Re: [PATCH] Re: [PATCH] drivers/net: remove network driver ..., Alan Cox, (Fri May 16, 2:56 am)

Re: [PATCH] Re: [PATCH] drivers/net: remove network driver ..., Andi Kleen, (Fri May 16, 3:19 am)

Re: [PATCH] Re: [PATCH] drivers/net: remove network driver ..., Herbert Xu, (Fri May 16, 5:12 am)

Re: [PATCH] Re: [PATCH] drivers/net: remove network driver ..., Adrian Bunk, (Fri May 16, 6:20 am)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Lennart Sorensen, (Fri May 16, 6:21 am)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Jeff Garzik, (Fri May 16, 6:40 am)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Will Newton, (Fri May 16, 6:59 am)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Lennart Sorensen, (Fri May 16, 7:15 am)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Jeff Garzik, (Fri May 16, 7:27 am)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Alan Cox, (Fri May 16, 8:10 am)

Re: [PATCH] Re: [PATCH] drivers/net: remove network driver ..., Andi Kleen, (Fri May 16, 9:20 am)

Re: [PATCH] Re: [PATCH] drivers/net: remove network driver ..., Andi Kleen, (Fri May 16, 9:25 am)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Lennart Sorensen, (Fri May 16, 10:36 am)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Alan Cox, (Fri May 16, 11:11 am)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Kok, Auke, (Fri May 16, 11:40 am)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Lennart Sorensen, (Fri May 16, 11:41 am)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Lennart Sorensen, (Fri May 16, 11:42 am)

Re: [PATCH] Re: [PATCH] drivers/net: remove network driver ..., David Miller, (Fri May 16, 12:47 pm)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Alan Cox, (Fri May 16, 1:04 pm)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Lennart Sorensen, (Fri May 16, 1:39 pm)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Alan Cox, (Fri May 16, 1:46 pm)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Rick Jones, (Fri May 16, 4:28 pm)

Re: [PATCH] Re: [PATCH] drivers/net: remove network driver ..., Herbert Xu, (Fri May 16, 6:01 pm)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Chris Peterson, (Fri May 16, 9:55 pm)

Re: [PATCH] Re: [PATCH] drivers/net: remove network driver ..., Andi Kleen, (Sat May 17, 3:59 am)

Re: [PATCH] Re: [PATCH] drivers/net: remove network driver ..., Chris Peterson, (Sat May 17, 12:54 pm)

Re: [PATCH] Re: [PATCH] drivers/net: remove network driver ..., Arjan van de Ven, (Sat May 17, 1:05 pm)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Matt Mackall, (Sat May 17, 5:36 pm)

Re: [PATCH] Re: [PATCH] drivers/net: remove network driver ..., Andi Kleen, (Sun May 18, 3:08 am)

Re: [PATCH] Re: [PATCH] drivers/net: remove network driver ..., Andi Kleen, (Sun May 18, 3:13 am)

Re: [PATCH] Re: [PATCH] drivers/net: remove network driver ..., Theodore Tso, (Sun May 18, 4:26 am)

Re: [PATCH] Re: [PATCH] drivers/net: remove network driver ..., Joe Korty, (Sun May 18, 5:57 am)

Re: [PATCH] Re: [PATCH] drivers/net: remove network driver ..., Andi Kleen, (Sun May 18, 10:53 am)

Re: [PATCH] Re: [PATCH] drivers/net: remove network driver ..., Helge Hafting, (Thu May 22, 2:28 am)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Glen Turner, (Sun May 25, 7:55 am)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Glen Turner, (Sun May 25, 8:09 am)

Re: [PATCH] Re: [PATCH] drivers/net: remove network driver ..., Glen Turner, (Sun May 25, 8:26 am)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Theodore Tso, (Sun May 25, 4:27 pm)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Alejandro Riveira , (Mon May 26, 6:43 am)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Bill Fink, (Mon May 26, 8:14 am)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Krzysztof Halasa, (Mon May 26, 2:07 pm)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Bill Fink, (Mon May 26, 2:52 pm)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Ben Hutchings, (Mon May 26, 3:11 pm)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Rick Jones, (Tue May 27, 9:44 am)

Re: [PATCH] drivers/net: remove network drivers' last few ..., Pavel Machek, (Fri May 30, 12:50 pm)

Navigation

Popular discussions


linux-kernel:
Greg KH	Og dreams of kernels
Jens Axboe	[PATCH 31/33] Fusion: sg chaining support
Arnd Bergmann	Re: finding your own dead "CONFIG_" variables
Mark Brown	[PATCH 2/2] Subject: natsemi: Allow users to disable workaround for DspCfg reset
Tony Breeds	[LGUEST] Look in object dir for .config
git:
Brian Downing	Re: Git in a Nutshell guide
John Benes	Re: master has some toys
Matthias Lederhofer	[PATCH 4/7] introduce GIT_WORK_TREE to specify the work tree
Alexander Sulfrian	[RFC/PATCH] RE: git calls SSH_ASKPASS even if DISPLAY is not set
Junio C Hamano	Re: Rss produced by git is not valid xml?