Re: Is fork() hook ever possible?

On Tue, Nov 15, 2011 at 12:49:29AM -0500, David Schultz wrote:
> On Tue, Nov 15, 2011, Andrey Chernov wrote:
> > In case you mean passing later whole structure like:
> >=20
> > arc4_addrandom((u_char *)&rdat, sizeof(rdat));
> >=20
> > it will be incorrect because it change known algorithm parameters, whic=
h=20
> > defines exact 128 bytes and not anything else.
>=20
> No, RC4 keys are anything up to 256 bytes.

Of course. But changing it away from the reference implementation will=20
cause questions or paranoia. You can re-read your recent reasons against=20
lowering drop count from 1024, this is very similar.

> I think what you really want is a union in any case, but relax.
> arc4_stir() works right now, so I think it can stay as is until
> we're ready to make further functional changes, e.g., getting
> entropy from the KERN_ARND sysctl. =20

You can left the current stir code as is but please don't forget in the=20
future that the price is its weakness in jails without /dev/random.

> But that's complicated by
> the fact that KERN_ARND won't tell you if it has failed to produce
> any useful entropy, and I won't have the cycles to look into it for
> a little while.

BTW, we can re-stir kernel arc4 one time more - when yarrow is feeded,=20
=66rom the yarrow code. In general it promises to be earlier that any of=20
userland programs is starting.

--=20
http://ache.vniz.net/
_______________________________________________
freebsd-current@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-current
To unsubscribe, send any mail to "freebsd-current-unsubscribe@freebsd.org"