Received: by 2002:a05:6a10:1a4d:0:0:0:0 with SMTP id nk13csp5093305pxb;
        Sun, 6 Feb 2022 13:32:01 -0800 (PST)
X-Google-Smtp-Source: ABdhPJwXuxqaeHBNLNTYVvS6ew6Gen+H5ftIcyjG0+lRQdfuaoYamUR/mFiAUbUywITtnMfTGhHJ
X-Received: by 2002:a17:90b:3841:: with SMTP id nl1mr15292744pjb.50.1644183121197;
        Sun, 06 Feb 2022 13:32:01 -0800 (PST)
ARC-Seal: i=1; a=rsa-sha256; t=1644183121; cv=none;
        d=google.com; s=arc-20160816;
        b=V+HZqFWJNl9wcyEUSwUqmpyF8QU0jtp7Kgh/5XmzKauWXXHdMsH+gSJ8l+essl/KCM
         KV9gjwaSQyPlbAt7c176T8uIx1rMt2akzzEU+eKkjFVwvxasOiKSIduj4o4QpXkwMI8W
         vrdfPeybo7hBwt/yggMQGSjJNyJFvjtj9p7JaNT12z5QJQD7O0X1yfYQhQfxVyiKTz2W
         jfShZ2owv0fyIFzZ1QIJGHQxLCzk9nv/jJ/q6azcLm0ckU0YWxUJtgQsWOnOarFg5bFT
         Y/vnmhs+Tr/dr7oN2gAh2CMYsDi1DrdpNFAOXV18je0Va19G4yt5gfGakinyqteuS4FW
         J82g==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=list-id:precedence:content-transfer-encoding:mime-version
         :references:in-reply-to:message-id:date:subject:cc:to:from
         :dkim-signature;
        bh=ajoLvXOqNUsQDqmDZKsWT4JQr84dpEvj/4vqEVhVNZQ=;
        b=bhFMyvqwNML5nLsrhwjZpD+PunWAzsbaHn+C405yAp8VMkdxtd9oeklfuf7T9B5uMW
         WOUFrl9ZIDpdCLRrzLoKBwxkci2PS+H6zZ5d7vvugwVuTf5EmlbTpgnmzVxodAjWwi19
         vJqwwZZaYJc1UNwXDnAlUrPJMJ+9bNR4UG6N3PkE3IA+wZKWFRAbKOAcyyyGhTxVS3OX
         TSnEgRFKgTgbgyXhEbLcOBVFfJpGKLq3xp761/fOCA5F32g1Qi3qapQ2dVzvgfbsNteF
         pUUUwr0AcXvT1L5h5OS0dgrYv7DaMQJcYCbM9YBek75C+3RxNdcHOodkpob57d+s6vqN
         hw1g==
ARC-Authentication-Results: i=1; mx.google.com;
       dkim=pass header.i=@chronox.de header.s=strato-dkim-0002 header.b=FFwpIsca;
       spf=pass (google.com: domain of linux-crypto-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-crypto-owner@vger.kernel.org
Return-Path: <linux-crypto-owner@vger.kernel.org>
Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20])
        by mx.google.com with ESMTP id u9si1049660pfi.145.2022.02.06.13.31.41;
        Sun, 06 Feb 2022 13:32:01 -0800 (PST)
Received-SPF: pass (google.com: domain of linux-crypto-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@chronox.de header.s=strato-dkim-0002 header.b=FFwpIsca;
       spf=pass (google.com: domain of linux-crypto-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-crypto-owner@vger.kernel.org
Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand
        id S236254AbiBFQIa (ORCPT <rfc822;linux.lists.archive@gmail.com>
        + 99 others); Sun, 6 Feb 2022 11:08:30 -0500
Received: from lindbergh.monkeyblade.net ([23.128.96.19]:36018 "EHLO
        lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org
        with ESMTP id S231915AbiBFQIa (ORCPT
        <rfc822;linux-crypto@vger.kernel.org>);
        Sun, 6 Feb 2022 11:08:30 -0500
X-Greylist: delayed 178 seconds by postgrey-1.37 at lindbergh.monkeyblade.net; Sun, 06 Feb 2022 08:08:28 PST
Received: from mo4-p00-ob.smtp.rzone.de (mo4-p00-ob.smtp.rzone.de [85.215.255.23])
        by lindbergh.monkeyblade.net (Postfix) with ESMTPS id F1476C06173B
        for <linux-crypto@vger.kernel.org>; Sun,  6 Feb 2022 08:08:28 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; t=1644163343;
    s=strato-dkim-0002; d=chronox.de;
    h=References:In-Reply-To:Message-ID:Date:Subject:Cc:To:From:Cc:Date:
    From:Subject:Sender;
    bh=ajoLvXOqNUsQDqmDZKsWT4JQr84dpEvj/4vqEVhVNZQ=;
    b=FFwpIsca12VqssxpQD5wcww02Xywkw82X+hgU1cY+IvKW9QgfDtvD0UJqYUN7RoD0s
    Db5vozmgtt9diDru2HA4LqUdCGDTbtElqKxR+mT4pWlsiPULAcAl+vRrbJPf3Y7AN3Re
    UYAFfLgNpQp0rALhgaqq352iUYMhCo5ZV+S6Vr4EsmAKxptfKFuW9RAjPZyHlhp78fUl
    qB6HoBigNqCyhdYdgmyv4x72Slvy7nOJo+KDCebYMO+C/WBUj4ZhGQ5JhmlghCGy+XxQ
    0g5Xvg2jNrVrXr6Y3gdMSTxaILHioKilwd1LE2ctFprQ/sqCgl5Us64glgKYhzYLbH5p
    oFbA==
Authentication-Results: strato.com;
    dkim=none
X-RZG-AUTH: ":P2ERcEykfu11Y98lp/T7+hdri+uKZK8TKWEqNyiHySGSa9k9xmwdNnzGHXvcOeibdLc="
X-RZG-CLASS-ID: mo00
Received: from tauon.chronox.de
    by smtp.strato.de (RZmta 47.39.0 DYNA|AUTH)
    with ESMTPSA id z28df7y16G2MNjO
        (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256 bits))
        (Client did not present a certificate);
    Sun, 6 Feb 2022 17:02:22 +0100 (CET)
From:   Stephan Mueller <smueller@chronox.de>
To:     Eric Biggers <ebiggers@kernel.org>,
        Herbert Xu <herbert@gondor.apana.org.au>
Cc:     linux-crypto@vger.kernel.org, simo@redhat.com,
        Nicolai Stange <nstange@suse.de>
Subject: Re: [PATCH 0/7] Common entropy source and DRNG management
Date:   Sun, 06 Feb 2022 17:02:21 +0100
Message-ID: <2092435.IRzVExRRsL@tauon.chronox.de>
In-Reply-To: <Yf30GEJi/61RNq8A@gondor.apana.org.au>
References: <2486550.t9SDvczpPo@positron.chronox.de> <YfQ7FDJqb2zhVcfp@sol.localdomain> <Yf30GEJi/61RNq8A@gondor.apana.org.au>
MIME-Version: 1.0
Content-Transfer-Encoding: 7Bit
Content-Type: text/plain; charset="us-ascii"
X-Spam-Status: No, score=-2.1 required=5.0 tests=BAYES_00,DKIM_SIGNED,
        DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,RCVD_IN_DNSWL_NONE,
        SPF_HELO_PASS,SPF_NONE,T_SCC_BODY_TEXT_LINE autolearn=ham
        autolearn_force=no version=3.4.6
X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on
        lindbergh.monkeyblade.net
Precedence: bulk
List-ID: <linux-crypto.vger.kernel.org>
X-Mailing-List: linux-crypto@vger.kernel.org

Am Samstag, 5. Februar 2022, 04:50:48 CET schrieb Herbert Xu:

Hi Herbert,

> On Fri, Jan 28, 2022 at 10:51:00AM -0800, Eric Biggers wrote:
> > > The extraction of the entropy source and DRNG management into its own
> > > component separates out the security sensitive implementation currently
> > > found in multiple locations following the strategy found in the crypto
> > > API where each moving part is separated and encapsulated.
> > > 
> > > The current implementation of the ESDM allows an easy addition of new
> > > entropy sources which are properly encapsulated in self-contained code
> > > allowing self- contained entropy analyses to be performed for each.
> > > These entropy sources would provide their seed data completely separate
> > > from other entropy sources to the DRNG preventing any mutual
> > > entanglement and thus challenges in the entropy assessment. I have
> > > additional entropy sources already available that I would like to
> > > contribute at a later stage. These entropy sources can be enabled,
> > > disabled or its entropy rate set as needed by vendors depending on
> > > their entropy source analysis. Proper default values would be used for
> > > the common case where a vendor does not want to perform its own
> > > analysis or a distro which want to provide a common kernel binary for
> > > many users.> 
> > What is the actual point of this?  The NIST DRBGs are already seeded from
> > random.c, which is sufficient by itself but doesn't play well with
> > certifications, and from Jitterentropy which the certification side is
> > happy with.  And the NIST DRBGs are only present for certification
> > purposes anyway; all real users use random.c instead.  So what problem
> > still needs to be solved?
> Indeed.  Stephan, could you please explain exactly what additional
> seeding sources are needed over the current jitter+/dev/random sources
> (and why).  Or even better, add those seeding sources that we must have
> in your patch series so that they can be evaluated together.
> 
> As it stands this patch series seems to be adding a lot of code without
> any uses.

Thank you for the clarification. I will provide that information.
> 
> Thanks,


Ciao
Stephan