Re: [PATCH v2 8/9] random: use hash function for crng_slow_load()

From: Dominik Brodowski
Date: Wed Feb 09 2022 - 06:57:52 EST

Next message: Jani Nikula: "Re: [PATCH v6 1/3] i915/gvt: Introduce the mmio table to support VFIO new mdev API"
Previous message: Kai Huang: "Re: [PATCHv2 00/29] TDX Guest: TDX core support"
In reply to: Jason A. Donenfeld: "[PATCH v2 8/9] random: use hash function for crng_slow_load()"
Next in thread: Jason A. Donenfeld: "[PATCH v2 7/9] random: use simpler fast key erasure flow on per-cpu keys"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Am Wed, Feb 09, 2022 at 02:19:18AM +0100 schrieb Jason A. Donenfeld:
> Since we have a hash function that's really fast, and the goal of
> crng_slow_load() is reportedly to "touch all of the crng's state", we
> can just hash the old state together with the new state and call it a
> day. This way we dont need to reason about another LFSR or worry about
> various attacks there. This code is only ever used at early boot and
> then never again.

Reviewed-by: Dominik Brodowski <linux@xxxxxxxxxxxxxxxxxxxx>

Thanks,
Dominik

Next message: Jani Nikula: "Re: [PATCH v6 1/3] i915/gvt: Introduce the mmio table to support VFIO new mdev API"
Previous message: Kai Huang: "Re: [PATCHv2 00/29] TDX Guest: TDX core support"
In reply to: Jason A. Donenfeld: "[PATCH v2 8/9] random: use hash function for crng_slow_load()"
Next in thread: Jason A. Donenfeld: "[PATCH v2 7/9] random: use simpler fast key erasure flow on per-cpu keys"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]