From owner-freebsd-security@FreeBSD.ORG Fri Sep 14 14:23:35 2012 Return-Path: Delivered-To: freebsd-security@FreeBSD.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 05CE9106566C; Fri, 14 Sep 2012 14:23:35 +0000 (UTC) (envelope-from freebsd@damnhippie.dyndns.org) Received: from duck.symmetricom.us (duck.symmetricom.us [206.168.13.214]) by mx1.freebsd.org (Postfix) with ESMTP id 8EEC38FC17; Fri, 14 Sep 2012 14:23:34 +0000 (UTC) Received: from damnhippie.dyndns.org (daffy.symmetricom.us [206.168.13.218]) by duck.symmetricom.us (8.14.5/8.14.5) with ESMTP id q8EENUxo063117; Fri, 14 Sep 2012 08:23:30 -0600 (MDT) (envelope-from freebsd@damnhippie.dyndns.org) Received: from [172.22.42.240] (revolution.hippie.lan [172.22.42.240]) by damnhippie.dyndns.org (8.14.3/8.14.3) with ESMTP id q8EENHgg052959; Fri, 14 Sep 2012 08:23:17 -0600 (MDT) (envelope-from freebsd@damnhippie.dyndns.org) From: Ian Lepore To: "Bjoern A. Zeeb" In-Reply-To: References: <50453686.9090100@FreeBSD.org> <20120911082309.GD72584@dragon.NUXI.org> <504F0687.7020309@FreeBSD.org> <201209121628.18088.jhb@freebsd.org> <5050F477.8060409@FreeBSD.org> <20120912213141.GI14077@x96.org> <20120913052431.GA15052@dragon.NUXI.org> Content-Type: text/plain; charset="us-ascii" Date: Fri, 14 Sep 2012 08:23:17 -0600 Message-ID: <1347632597.1110.155.camel@revolution.hippie.lan> Mime-Version: 1.0 X-Mailer: Evolution 2.32.1 FreeBSD GNOME Team Port Content-Transfer-Encoding: 7bit X-Mailman-Approved-At: Fri, 14 Sep 2012 14:51:22 +0000 Cc: Arthur Mesh , Doug Barton , David O'Brien , freebsd-security@FreeBSD.org, RW , Mark Murray Subject: Re: svn commit: r239569 - head/etc/rc.d X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 14 Sep 2012 14:23:35 -0000 On Fri, 2012-09-14 at 13:38 +0000, Bjoern A. Zeeb wrote: > On Thu, 13 Sep 2012, Bjoern A. Zeeb wrote: > > Hi, > > I have removed freebsd-rc for this part of the discussion as it's > unrelated. > I don't think I have the right expertise to help in this discussion. My gut tells me that lossless compression (a simple change of encoding) will not discard entropy, while hashing (purposely discarding information rather than simply changing the way it's expressed) seems quite likely to discard entropy. But I can't back that up with any sort of proof or experimental evidence. I suspect someone well-versed in information theory could better address the issue. My main interest in the discussion has always been the runtime expense of the "better than nothing" entropy generation on low-end platforms. I think the one thing left I might be able to contribute is a little bit of OtherThink that the freebsd-rc thread inspired in me: Several folks have found bits of "better than nothing" entropy squirelled away here and there and there was some good discussion about the relative merits of various bits of it. All that information comes from the kernel, so why don't we harvest and use it in the kernel? How about a new SYSINIT that runs just before init(1) is launched that goes and directly harvests some of the "better than nothing" values from the sources (meaning we get the binary representations without all the boilerplate text) and feed them to yarrow internally? That way we're always seeded at least "better than nothing" before any rc scripts run. That whittles away one part of what initrandom has to do, and it completely wishes away the question of how to increase the density of the entropy in the data in initrandom, because it will only be responsible for feeding in the files that contain "pure" entropy. -- Ian