Collecting entropy from device_attach() times.
Jonathan Anderson
jonathan at FreeBSD.org
Thu Sep 20 10:03:56 UTC 2012
On Thursday, 20 September 2012 at 10:20, Dag-Erling Smørgrav wrote:
> Please understand that the timers used here have a resolution of around
> 1e-8 to 1e-10 seconds. You may be able to predict the first six digits
> with reasonable accuracy - in fact, the first four or five will almost
> always be 0, except for devices with moving parts - but anything beyond
> that is a crapshoot, even in a virtual machine.
And this conclusion seems to be borne out by Pawel's data, at least on one machine on one architecture. RW's point is still valid, though: if we're going to start asserting that "we have gathered entropy from source X", we owe it to the consumers of that entropy to really check that we've done what we claim.
For instance: on an embedded board with few devices, that uses FDT rather than bus enumeration whatsits, perhaps the time is more deterministic and therefore yields less entropy. I don't know, maybe it doesn't, but we must have data.
Jon
--
Jonathan Anderson
jonathan at FreeBSD.org
More information about the freebsd-security
mailing list