Details

Reviewers

scottl
vsevolod
jmg
delphij
imp
rwatson

Group Reviewers

manpages
secteam

Commits

rS287023: Make the UMA harvesting go away completely if not wanted. Default to "not…

Summary

High-performance folks have objected to my harvesting of entropy in the zone allocator (UMA). This work will set that harvesting to optional, with the default to "off". The code concerned is compiled out, so there are NO instructions added when it is not present. The call lines remain, but these will be null macros by default.

Folks who need this entropy may turn it on with a kernel build option, and SDT probes are set in place to assist the measurements needed in making the decision.

Diff Detail

Repository

rS FreeBSD src repository - subversion

Lint

Lint Not Applicable

Unit

Tests Not Applicable

Event Timeline

markm updated this revision to Diff 7292.Jul 25 2015, 1:14 PM

markm retitled this revision from to Do do compile in the really expensive entropy harvesting unless this is requested..

markm updated this object.

markm edited the test plan for this revision. (Show Details)

markm added reviewers: scottl, rwatson, jmg, delphij, imp, vsevolod.

markm added a subscriber: security.

Herald added a subscriber: imp. · View Herald TranscriptJul 25 2015, 1:14 PM

ScottL, JeffR - this is not complete yet, but does the general idea meet your requirements?

markm updated this object.Jul 25 2015, 1:19 PM

imp added inline comments.Jul 25 2015, 3:19 PM

sys/vm/uma_core.c
2138–2141 ↗	(On Diff #7292)	Not entirely sure that this long comment is needed... But if you must, you should make it a one liner: /* Enable entropy collection for RANDOM_ENABLE_UMA kernel option */ or something. Here and below.

Shorten some comments.

scottl accepted this revision.Jul 25 2015, 4:02 PM

scottl edited edge metadata.

This revision is now accepted and ready to land.Jul 25 2015, 4:02 PM

Glad you liked my suggestion.

I like the idea, but it looks like the new version doesn't have the random.h changes. If combined with the sys/conf/NOTES, sys/conf/files and sys/sys/random.h changes in the first version of changeset, then consider this as an "Accept".

Please post a complete patch that includes both sets of changes, and adds proper documentation.

sys/conf/NOTES
2987 ↗	(On Diff #7292)	Comment here is necessary for people to understand what this does.
sys/sys/random.h
93 ↗	(On Diff #7292)	I don't like creating a new function for this, just for two points... putting ifdefs in the uma code to me seems better. Also, these new functions are undocumented, and need to be documented if added.

This revision now requires changes to proceed.Jul 25 2015, 5:55 PM

In D3197#64019, @delphij wrote:

I like the idea, but it looks like the new version doesn't have the random.h changes. If combined with the sys/conf/NOTES, sys/conf/files and sys/sys/random.h changes in the first version of changeset, then consider this as an "Accept".

Oops - yes - it is both together. I messed up using arcanist. :-]

Make the UMA harvesting go away completely if not wanted. Default to "not wanted".
Fix comment as per review suggestion.

markm added a comment.Jul 26 2015, 1:55 PM

This comment was removed by markm.

sys/sys/random.h
93 ↗	(On Diff #7343)	I would be prepared to put in comments where these function wrappers are used, except I was just asked to remove this. Wrapping them in ifdefs will be a nasty mess, and documenting them as if they were API functions when they are only used in one place is a waste of time.

markm marked 3 inline comments as done.Jul 26 2015, 1:58 PM

markm added inline comments.

sys/conf/NOTES
2987 ↗	(On Diff #7343)	On its way. This is part of the WIP.

Massage this into a more commit-worthy version; document what is going on and provide SDT probes to assist adopters.

Herald added reviewers: manpages, secteam. · View Herald TranscriptAug 19 2015, 9:30 AM

markm updated this object.Aug 19 2015, 9:31 AM

markm edited edge metadata.

markm updated this object.Aug 19 2015, 10:13 AM

Closed by commit rS287023: Make the UMA harvesting go away completely if not wanted. Default to "not… (authored by markm). · Explain WhyAug 22 2015, 12:59 PM

This revision was automatically updated to reflect the committed changes.

Do not compile in the really expensive entropy harvesting unless it is requested.
ClosedPublic
Actions

Details

Diff Detail

Event Timeline

Revision Contents
Changeset List

Diff 8126

head/share/man/man4/random.4

head/sys/conf/NOTES

head/sys/conf/options

head/sys/dev/random/build.sh

head/sys/dev/random/fortuna.c

head/sys/dev/random/random_harvestq.c

head/sys/dev/random/unit_test.c

head/sys/dev/random/yarrow.c

head/sys/sys/random.h

head/sys/vm/uma_core.c

Do not compile in the really expensive entropy harvesting unless it is requested.ClosedPublicActions

Details

Diff Detail

Event Timeline

Revision ContentsChangeset List

Diff 8126

head/share/man/man4/random.4

head/sys/conf/NOTES

head/sys/conf/options

head/sys/dev/random/build.sh

head/sys/dev/random/fortuna.c

head/sys/dev/random/random_harvestq.c

head/sys/dev/random/unit_test.c

head/sys/dev/random/yarrow.c

head/sys/sys/random.h

head/sys/vm/uma_core.c

Do not compile in the really expensive entropy harvesting unless it is requested.
ClosedPublic
Actions

Revision Contents
Changeset List