Re: [PATCH 1/2] x86/random: Retry on RDSEED failure

From: Jason A. Donenfeld
Date: Tue Jan 30 2024 - 13:35:59 EST

Next message: Gustavo A. R. Silva: "Re: [PATCH] crypto: qat - use kcalloc() instead of kzalloc()"
Previous message: Hans de Goede: "Re: Implement per-key keyboard backlight as auxdisplay?"
In reply to: Jason A. Donenfeld: "Re: [PATCH 1/2] x86/random: Retry on RDSEED failure"
Next in thread: Reshetova, Elena: "RE: [PATCH 1/2] x86/random: Retry on RDSEED failure"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Elena,

On Tue, Jan 30, 2024 at 3:06 PM Jason A. Donenfeld <Jason@xxxxxxxxx> wrote:
> 2) Can a malicious host *actually* create a fully deterministic
> environment? One that'll produce the same timing for the jitter
> entropy creation, and all the other timers and interrupts and things?
> I imagine the attestation part of CoCo means these VMs need to run on
> real Intel silicon and so it can't be single stepped in TCG or
> something, right? So is this problem actually a real one? And to what
> degree? Any good experimental research on this?

I'd like to re-up this question. It seems like assessing the reality
of the concern would be worthwhile.

Jason

Next message: Gustavo A. R. Silva: "Re: [PATCH] crypto: qat - use kcalloc() instead of kzalloc()"
Previous message: Hans de Goede: "Re: Implement per-key keyboard backlight as auxdisplay?"
In reply to: Jason A. Donenfeld: "Re: [PATCH 1/2] x86/random: Retry on RDSEED failure"
Next in thread: Reshetova, Elena: "RE: [PATCH 1/2] x86/random: Retry on RDSEED failure"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]