Date: Fri, 06 Oct 2017 18:28:46 +0000 From: bugzilla-noreply@freebsd.org To: freebsd-bugs@FreeBSD.org Subject: [Bug 222807] PURE entropy sources are harvested but not mixed in. Also, min-entropy low per SP800-90B measurements Message-ID: <bug-222807-8-7ps3pDtr0F@https.bugs.freebsd.org/bugzilla/> In-Reply-To: <bug-222807-8@https.bugs.freebsd.org/bugzilla/> References: <bug-222807-8@https.bugs.freebsd.org/bugzilla/>
next in thread | previous in thread | raw e-mail | index | archive | help
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=3D222807 --- Comment #10 from commit-hook@freebsd.org --- A commit references this bug: Author: cem Date: Fri Oct 6 18:27:56 UTC 2017 New revision: 324372 URL: https://svnweb.freebsd.org/changeset/base/324372 Log: random(4): Discard low entropy inputs The later fields of the harvest_event structure are predictable and provi= de little value to the entropy pool. Only feed in the relatively high entro= py counter and explicit entropy buffer to increase measured input entropy. See also: https://people.freebsd.org/~jmg/vbsdcon_2017_ddfreebsdrng_slides.pdf PR: 222807 Submitted by: W. Dean Freeman <badfilemagic AT gmail.com> Reviewed by: jmg (earlier version), delphij Approved by: secteam (delphij) Obtained from: HBSD 8d809124d563937edd84c9c9d5494406e359c55c Security: no -- low entropy marginal input has no known negative affe= ct on pool quality Differential Revision: https://reviews.freebsd.org/D12610 Changes: head/sys/dev/random/fortuna.c --=20 You are receiving this mail because: You are the assignee for the bug.=
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-222807-8-7ps3pDtr0F>