Re: /dev/random in 2.4.6

Andreas Dilger (adilger@turbolabs.com)
Thu, 16 Aug 2001 14:30:58 -0600


On Thu, Aug 16, 2001 at 08:35:12PM +0100, Alex Bligh - linux-kernel wrote:
> It's a while since I looked, but I /thought/ entropy only came from
> IDE (not for instance from SCSI, and certainly not when everything
> is sitting in cache). I have a reasonably active mailserver (SCSI,
> no k/b, no mouse, lots of RAM) which doesn't have enough entropy
> to cope with SSL/TLS gracefully without relying on the network
> traffic (i.e. behaves like it is ramdisk only).

Actually, AFAIK you _may_ get entropy from the IDE interrupts directly
(I didn't check), but you also appear to get entropy from block I/O
completions as well. I _thought_ I had seen such lines in IDE, DAC960,
and also in the SCSI midlayer, but then I wasn't paying much attention
to those - I was trying to track down the interrupts for net devices.

If it is NOT in the SCSI block I/O layer, it should probably be added.
Whether it makes sense to have entropy from both the block layer and
the actual device IRQs is an issue left up to the security experts (it
may have correlation, and not be good entropy).

Cheers, Andreas

-- 
Andreas Dilger  \ "If a man ate a pound of pasta and a pound of antipasto,
                 \  would they cancel out, leaving him still hungry?"
http://www-mddsp.enel.ucalgary.ca/People/adilger/               -- Dogbert

- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html Please read the FAQ at http://www.tux.org/lkml/