Re: [PATCH] x86: re-initialize RNG seed when selecting kernel

qemu-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [PATCH] x86: re-initialize RNG seed when selecting kernel

From:	Jason A. Donenfeld
Subject:	Re: [PATCH] x86: re-initialize RNG seed when selecting kernel
Date:	Mon, 26 Sep 2022 15:39:30 +0200

On Thu, Sep 22, 2022 at 5:28 PM Jason A. Donenfeld <Jason@zx2c4.com> wrote:
>
> We don't want it to be possible to re-read the RNG seed after ingesting
> it, because this ruins forward secrecy. Currently, however, the setup
> data section can just be re-read. Since the kernel is always read after
> the setup data, use the selection of the kernel as a trigger to
> re-initialize the RNG seed, just like we do on reboot, to preserve
> forward secrecy.
>
> Cc: Paolo Bonzini <pbonzini@redhat.com>
> Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
> ---
> Paolo- this applies on top of the 4 you merged this morning. -Jason

Just bumping this, in hopes that this can go out with the same PULL
for the other 4 you merged last week.

Jason

[Prev in Thread]

Current Thread

[Next in Thread]

[PATCH] x86: re-initialize RNG seed when selecting kernel, Jason A. Donenfeld, 2022/09/22
- Re: [PATCH] x86: re-initialize RNG seed when selecting kernel, Jason A. Donenfeld <=
  - Re: [PATCH] x86: re-initialize RNG seed when selecting kernel, Paolo Bonzini, 2022/09/26
    - Re: [PATCH] x86: re-initialize RNG seed when selecting kernel, Jason A. Donenfeld, 2022/09/26
    - Re: [PATCH] x86: re-initialize RNG seed when selecting kernel, Peter Maydell, 2022/09/26
    - Re: [PATCH] x86: re-initialize RNG seed when selecting kernel, Jason A. Donenfeld, 2022/09/26

Prev by Date: [PATCH v2 11/11] gdbstub: move guest debug support check to ops
Next by Date: [PATCH v1 3/7] contrib/gitdm: add Paul to individual contributors
Previous by thread: [PATCH] x86: re-initialize RNG seed when selecting kernel
Next by thread: Re: [PATCH] x86: re-initialize RNG seed when selecting kernel
Index(es):
- Date
- Thread