Page MenuHomeFreeBSD
Differential D52233

random: Exclude the timestamp from healthtest for pure sources
ClosedPublic
Actions

Authored by markj on Aug 28 2025, 9:48 PM.
Tags
None
Referenced Files
Unknown Object (File)
Sat, Oct 11, 1:19 PM
Unknown Object (File)
Sat, Oct 11, 1:19 PM
Unknown Object (File)
Sat, Oct 11, 1:19 PM
Unknown Object (File)
Sat, Oct 11, 1:19 PM
Unknown Object (File)
Sat, Oct 11, 5:04 AM
Unknown Object (File)
Thu, Sep 25, 7:08 PM
Unknown Object (File)
Sat, Sep 20, 10:29 PM
Unknown Object (File)
Thu, Sep 18, 8:15 PM
View All 26 Files
Subscribers
cem
emaste
imp
obrien

Details

Reviewers
emaste
cem
Group Reviewers
csprng
Commits
rGa33ab3001a1e: random: Exclude the timestamp from healthtest for pure sources
rG480928ae657d: random: Exclude the timestamp from healthtest for pure sources
Summary

So-called pure sources provide entropy at regular intervals, so the
timestamp counter provides little entropy. Exclude it from health
testing for such sources.

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

markj created this revision.Aug 28 2025, 9:48 PM
Herald added a subscriber: imp. · View Herald TranscriptAug 28 2025, 9:48 PM
markj requested review of this revision.Aug 28 2025, 9:48 PM
Herald added a subscriber: obrien. · View Herald TranscriptAug 28 2025, 9:48 PM
markj added a parent revision: D52232: random: Allow pure entropy sources to provide a min-entropy estimate.Aug 28 2025, 9:48 PM
Harbormaster completed remote builds in B66624: Diff 161158.Aug 28 2025, 9:48 PM
cem added a subscriber: cem.Aug 29 2025, 1:34 AM
cem added inline comments.
sys/dev/random/random_harvestq.c
347

If callers are still consuming HARVESTSIZE+1 bytes, doesn't this just replace one deterministic value with another (0 from memset)?

emaste added a subscriber: emaste.Aug 29 2025, 1:47 AM
markj added inline comments.Aug 29 2025, 1:17 PM
sys/dev/random/random_harvestq.c
347

To be clear, the modified copy with dst[HARVESTSIZE] == 0 is only used for health testing, the original sample is passed unmodified to the entropy pools.

This does replace one deterministic value with another, but this way it's more likely that the health checks will catch problems with pure entropy sources. Without this change, if an entropy source is "stuck" and keeps providing the same value over and over, the inclusion of the timestamp might be enough to defeat the (quite weak) health tests. This is just a measure to try and make the health tests more effective.

emaste added inline comments.Aug 29 2025, 1:42 PM
sys/dev/random/random_harvestq.c
347

I wondered about that as well; your explanation makes sense. It's probably worth putting some of what you wrote here in a comment there.

markj updated this revision to Diff 161181.Aug 29 2025, 1:49 PM

Add a comment.

Harbormaster completed remote builds in B66634: Diff 161181.Aug 29 2025, 1:50 PM
emaste accepted this revision as: emaste.Aug 29 2025, 1:53 PM
This revision is now accepted and ready to land.Aug 29 2025, 1:53 PM
cem accepted this revision.Aug 29 2025, 4:30 PM
cem added inline comments.
sys/dev/random/random_harvestq.c
347

Makes sense.

Closed by commit rG480928ae657d: random: Exclude the timestamp from healthtest for pure sources (authored by markj). · Explain WhySep 8 2025, 3:27 PM
This revision was automatically updated to reflect the committed changes.
markj added a commit: rG480928ae657d: random: Exclude the timestamp from healthtest for pure sources.
markj added a commit: rGa33ab3001a1e: random: Exclude the timestamp from healthtest for pure sources.Tue, Sep 30, 3:24 PM

Revision Contents
Changeset List

PathSize
sys/
dev/
random/
12 lines

Diff 161719

View Options

sys/dev/random/random_harvestq.c

Loading...