On 06/14/2011 04:12 PM, Matt Mackall wrote: > > Various people have offered to spend some time fixing this; I haven't > had time to look at it for a while. > So on my (long...) list of things to do for a while is enablement of RDRAND, which is a new instruction in Ivy Bridge disclosed in the latest few revisions of the AVX spec and is now in the SDM (the functional description is in vol 1, section 7.3.18 of the May 2011 edition.) Fenghua Yu did an initial enabling patch, but we have had to make some changes. >From the SDM: "The random numbers that are returned by the RDRAND instruction are supplied by a cryptographically secure Random Number Generator that employs a hardware DRBG (Digital Random Bit Generator, also known as a Pseudo Random Number Generator) seeded by a hardware NRBG (Nondeterministic Random Bit Generator, also known as a TRNG or True Random Number generator). In order for the hardware design to meet its security goals, the random number generator continuously tests itself and the random data it is generating. Runtime failures in the random number generator circuitry or statistically anomalous data occurring by chance will be detected by the self test hardware and flag the resulting data as being bad. In such extremely rare cases, the RDRAND instruction will return no data instead of bad data." Additionally, there is a software enabling guide containing a *lot* more detail at: http://tinyurl.com/6x6dmd2/ This basically means it is similar in behavior to our /dev/urandom in that it may gracefully degrade to a PRNG for short stretches of time, but will not degrade to a PRNG for an extended time, nor will it produce guessable data, ever; instead it will "fail shut." The one use case that it is cryptographically insufficient for is to seed a new PRNG, which probably means it is unsuitable for being fed as-is into /dev/random. -hpa -- To unsubscribe from this list: send the line "unsubscribe linux-crypto" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
