Re: [PATCH] ELF: implement AT_RANDOM for future glibc use | KernelTrap

Re: [PATCH] ELF: implement AT_RANDOM for future glibc use

view
thread

!MAILaRCHIVE_VOTE_RePLACE

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

[view in full thread]

From: Andi Kleen <andi@...>

To: Kees Cook <kees.cook@...>

Cc: Roland McGrath <roland@...>, <linux-kernel@...>, Jakub Jelinek <jakub@...>, Ulrich Drepper <drepper@...>, <libc-alpha@...>

Subject: Re: [PATCH] ELF: implement AT_RANDOM for future glibc use

Date: Monday, October 6, 2008 - 2:00 am

Kees Cook <kees.cook@canonical.com> writes:

quoted text> While discussing[1] the need for glibc to have access to random bytes
> during program load, it seems that an earlier attempt to implement
> AT_RANDOM got stalled.  This implements a configurable number of random
> bytes available to every ELF program via a new auxv AT_RANDOM vector.

While the basic idea is good using get_random_bytes() is not. 

That eats precious cryptography strength entropy from the entropy
pool, which on many systems is not adequately fed. In those cases you
really only want to use it for real keys, not for lower grade
applications. The applications glibc wants to use this for do not
really require crypto strength entropy, just relatively unpredictable
randomness.

What you should instead do is to initialize some other cryptographic RNG 
regularly and use the output of that.

-Andi
--
unsubscribe noticeTo unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]

Messages in current thread:

[PATCH] ELF: implement AT_RANDOM for future glibc use, Kees Cook, (Thu Oct 2, 8:16 pm)

Re: [PATCH] ELF: implement AT_RANDOM for future glibc use, Andi Kleen, (Mon Oct 6, 2:00 am)

Re: [PATCH] ELF: implement AT_RANDOM for future glibc use, Kees Cook, (Mon Oct 6, 1:50 pm)

Re: [PATCH] ELF: implement AT_RANDOM for future glibc use, Andi Kleen, (Mon Oct 6, 3:26 pm)

Re: [PATCH] ELF: implement AT_RANDOM for future glibc use, Kees Cook, (Mon Oct 6, 6:07 pm)

Re: [PATCH] ELF: implement AT_RANDOM for future glibc use, Roland McGrath, (Mon Oct 6, 7:58 pm)

Re: [PATCH] ELF: implement AT_RANDOM for future glibc use, Kees Cook, (Mon Oct 6, 8:31 pm)

Re: [PATCH] ELF: implement AT_RANDOM for future glibc use, Ulrich Drepper, (Mon Oct 6, 8:57 pm)

Re: [PATCH] ELF: implement AT_RANDOM for future glibc use, Kees Cook, (Mon Oct 6, 9:44 pm)

Re: [PATCH] ELF: implement AT_RANDOM for future glibc use, Ulrich Drepper, (Mon Oct 6, 9:51 pm)

Re: [PATCH] ELF: implement AT_RANDOM for future glibc use, Ulrich Drepper, (Mon Oct 6, 8:08 pm)

Re: [PATCH] ELF: implement AT_RANDOM for future glibc use, Andi Kleen, (Mon Oct 6, 7:28 pm)

Re: [PATCH] ELF: implement AT_RANDOM for future glibc use, Kees Cook, (Mon Oct 6, 6:01 pm)

Re: [PATCH] ELF: implement AT_RANDOM for future glibc use, Andi Kleen, (Mon Oct 6, 7:19 pm)

Re: [PATCH] ELF: implement AT_RANDOM for future glibc use, Kees Cook, (Mon Oct 6, 7:29 pm)

Re: [PATCH] ELF: implement AT_RANDOM for future glibc use, Andi Kleen, (Mon Oct 6, 7:44 pm)

Re: [PATCH] ELF: implement AT_RANDOM for future glibc use, Roland McGrath, (Thu Oct 2, 8:52 pm)

Re: [PATCH] ELF: implement AT_RANDOM for future glibc use, Kees Cook, (Fri Oct 3, 1:15 am)

Re: [PATCH] ELF: implement AT_RANDOM for future glibc use, Roland McGrath, (Fri Oct 3, 4:22 pm)

Re: [PATCH] ELF: implement AT_RANDOM for future glibc use, Jakub Jelinek, (Thu Oct 2, 8:43 pm)

[PATCH] ELF: implement AT_RANDOM for future glibc use, Kees Cook, (Fri Oct 3, 1:29 am)

Re: [PATCH] ELF: implement AT_RANDOM for future glibc use, Arjan van de Ven, (Fri Oct 3, 1:57 am)

Re: [PATCH] ELF: implement AT_RANDOM for future glibc use, Ulrich Drepper, (Fri Oct 3, 2:25 am)

[PATCH] ELF: implement AT_RANDOM for glibc PRNG seeding, Kees Cook, (Fri Oct 3, 10:50 am)

Re: [PATCH] ELF: implement AT_RANDOM for glibc PRNG seeding, Jakub Jelinek, (Fri Oct 3, 10:57 am)

[PATCH] ELF: implement AT_RANDOM for glibc PRNG seeding, Kees Cook, (Fri Oct 3, 1:33 pm)

Re: [PATCH] ELF: implement AT_RANDOM for glibc PRNG seeding, Ulrich Drepper, (Fri Oct 3, 1:41 pm)

[PATCH v5] ELF: implement AT_RANDOM for glibc PRNG seeding, Kees Cook, (Fri Oct 3, 1:59 pm)

Re: [PATCH v5] ELF: implement AT_RANDOM for glibc PRNG seeding, Andrew Morton, (Tue Oct 21, 4:01 pm)

Re: [PATCH v5] ELF: implement AT_RANDOM for glibc PRNG seeding, Ulrich Drepper, (Tue Oct 21, 4:22 pm)

Re: [PATCH v5] ELF: implement AT_RANDOM for glibc PRNG seeding, Andrew Morton, (Mon Oct 27, 1:46 am)

Re: [PATCH v5] ELF: implement AT_RANDOM for glibc PRNG seeding, Ulrich Drepper, (Sat Oct 18, 1:42 am)

Re: [PATCH] ELF: implement AT_RANDOM for glibc PRNG seeding, Ulrich Drepper, (Fri Oct 3, 10:56 am)

Re: [PATCH] ELF: implement AT_RANDOM for future glibc use, Kees Cook, (Fri Oct 3, 1:25 am)

Navigation

Popular discussions


linux-kernel:
david	Re: Dual-Licensing Linux Kernel with GPL V2 and GPL V3
Greg Kroah-Hartman	[PATCH 001/196] Chinese: Add the known_regression URI to the HOWTO
Justin C. Sherrill	Mailing list archive
Ingo Molnar	[patch 08/13] syslets: x86, add move_user_context() method
git:

linux-netdev:
Steven Rostedt	Re: -rt scheduling: wakeup bug?
David Miller	[GIT]: Networking
Jarek Poplawski	Re: [PATCH] pkt_sched: Destroy gen estimators under rtnl_lock().
Gerrit Renker	[PATCH 27/37] dccp: Integration of dynamic feature activation - part 2 (server side)
openbsd-misc:

Colocation donated by:

Who's online

There are currently 10 users and 945 guests online.

Online users

Syndicate