Received: by 10.192.165.148 with SMTP id m20csp5320408imm; Tue, 1 May 2018 12:54:47 -0700 (PDT) X-Google-Smtp-Source: AB8JxZqNpymQv0ylvx3ypUdxjIyCgT/IfFY+MhpimWAfF/RN/sf0k9X4+sLPiRLtYVxRwmbh3SMp X-Received: by 10.98.75.139 with SMTP id d11mr16897664pfj.244.1525204486887; Tue, 01 May 2018 12:54:46 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1525204486; cv=none; d=google.com; s=arc-20160816; b=P9UZJyxbLQ1iU27yiRs7WdDYiZofghlFxUeOHfODjvGbp3ejiddKdPGNTNomjOnSqk L63hKDbgLWx6guFsInpFtrxwu4a0mJbAdytZ7YlnHeCOb5xbhJveZ8VdTFxFOGt7348k BUjQMrLGrmsynmVfR7W3Whcf8G6gMyzOjSOEzShJYtYD7M0FYDCZKZPa+kMRNkpXy05b XqSVnBKFBJwRGE0Uf/M/NvNtHL6DnhGCS8EgaqYZy1Tx7PmDBWf/iql4oCGraoxzrkjw cqxie7Rk/mr6g3JamX379LlFr0FHqipVxWEUqwfLn82Y8tMiCL2RrgFj99rL1Ccw89RX MBMw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:user-agent:in-reply-to :content-disposition:mime-version:references:message-id:subject:to :from:date:arc-authentication-results; bh=PBEAI+a4KsYOCfAhM4GMn1f9KBrUZwgoDp5w7BZIIBM=; b=w+Y5cgQ3yzFyXAGilzz2nEtSKwgDzbOJBzbKr5yBx7UbT5BgUVUGVkl8FtR1+yXTNY wo+w6PZWmgGhErT/EMgbjAwmliANLZn900gxrlyPBfbwK1tkuKsdvgUGyp6inOAM1gS8 mjigSe1i6MwKLjJMqxZtA8z8Oc0JpceDdOz3i5JmDZct3GcWh/4wBM0ju1fiaYDoQoTJ m4fyjTqXQiN8wwZ22d4qtj/ZvhUMzGUIVxJZf0uD312kP+qUB4Zf+hZQGoEqaVvdG0XW camR6d/0xEC5sciE/z080iNzM2UevgDcm8jGMY1G8RCfW6h9w+HjDQrd1yO+E7V4HSl2 6lJQ== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id u2-v6si8315047pgb.321.2018.05.01.12.54.32; Tue, 01 May 2018 12:54:46 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1751126AbeEATxv (ORCPT + 99 others); Tue, 1 May 2018 15:53:51 -0400 Received: from atrey.karlin.mff.cuni.cz ([195.113.26.193]:40935 "EHLO atrey.karlin.mff.cuni.cz" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1750823AbeEATxu (ORCPT ); Tue, 1 May 2018 15:53:50 -0400 Received: by atrey.karlin.mff.cuni.cz (Postfix, from userid 512) id 9F5B580493; Tue, 1 May 2018 21:53:49 +0200 (CEST) Date: Tue, 1 May 2018 21:53:48 +0200 From: Pavel Machek To: "Theodore Y. Ts'o" , Sultan Alsawaf , "Jason A. Donenfeld" , LKML , Jann Horn Subject: Re: Linux messages full of `random: get_random_u32 called from` Message-ID: <20180501195348.GA6880@amd> References: <20180429170541.lrzwyihrd6d75rql@sultan-box> <20180429184101.GA31156@amd> <20180429202033.ysmc42mj2rrk3h7p@sultan-box> <20180429220519.GQ5965@thunk.org> <20180429222625.35tedjzkizchudcm@sultan-box> <20180429224928.teg6zyfjxndbcnsn@sultan-box> <20180430001106.GS5965@thunk.org> <20180430043445.t7wkykxzkhex2isi@sultan-box> <20180430161143.GA20585@thunk.org> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="UlVJffcvxoiEqYs2" Content-Disposition: inline In-Reply-To: <20180430161143.GA20585@thunk.org> User-Agent: Mutt/1.5.23 (2014-03-12) Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org --UlVJffcvxoiEqYs2 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Mon 2018-04-30 12:11:43, Theodore Y. Ts'o wrote: > On Sun, Apr 29, 2018 at 09:34:45PM -0700, Sultan Alsawaf wrote: > >=20 > > What about abusing high-resolution timers to get entropy? Since hrtimer= s can't > > make guarantees down to the nanosecond, there's always a skew between t= he > > requested expiry time and the actual expiry time. > >=20 > > Please see the attached patch and let me know just how horrible it is. >=20 > So think about exactly where the possible causes of the skew might be > coming from. Look very closely at the software implemntation. The > important thing here is to not get hung up on the software > abstraction, but to look at the *implementation*. (And if it's an > implementation in architecture specific code, we need to look at all > architectures.) >=20 > This applies on the hardware level as hard, but that gets harder > because there many possible hardware implemntations in use out there. > Remember that that on many systems there may be only single clock > crystal, and all other hardware timers maybe derived from that clock > using frequency dividers. (At least for everything on the mainboard.) On "many" systems? No, sorry, computers usually do not behave like this (CMOS RTC has separate clock, for example). I'm pretty sure that not a single machine problems were reported on has this problem. Pavel --=20 (english) http://www.livejournal.com/~pavelmachek (cesky, pictures) http://atrey.karlin.mff.cuni.cz/~pavel/picture/horses/blo= g.html --UlVJffcvxoiEqYs2 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: Digital signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iEYEARECAAYFAlroxcwACgkQMOfwapXb+vLCDwCfaX1nz8VWJ8DHAXlFs96kJ8lG 3rwAn0GyWzM+GSxgIZB47kaU8ztLJ5D+ =ig3V -----END PGP SIGNATURE----- --UlVJffcvxoiEqYs2--