[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] [RFC] Hypervisor RNG and enumeration

To: Jake Oshins <jakeo@xxxxxxxxxxxxx>
From: Andy Lutomirski <luto@xxxxxxxxxxxxxx>
Date: Wed, 29 Oct 2014 09:50:39 -0700
Cc: Mathew John <mathewj@xxxxxxxxxxxxx>, Theodore Ts'o <tytso@xxxxxxx>, David Hepkin <davidhep@xxxxxxxxxxxxx>, kvm list <kvm@xxxxxxxxxxxxxxx>, Gleb Natapov <gleb@xxxxxxxxxx>, Niels Ferguson <niels@xxxxxxxxxxxxx>, Jim Mattson <jmattson@xxxxxxxxxx>, Ian Jackson <Ian.Jackson@xxxxxxxxxxxxx>, Linux Virtualization <virtualization@xxxxxxxxxxxxxxxxxxxxxxxxxx>, Doug Covelli <dcovelli@xxxxxxxxxx>, "xen-devel@xxxxxxxxxxxxxxxxxxxx" <xen-devel@xxxxxxxxxxxxxxxxxxxx>, Christopher Covington <cov@xxxxxxxxxxxxxx>, Jun Nakajima <jun.nakajima@xxxxxxxxx>, "H. Peter Anvin" <hpa@xxxxxxxxx>, Paolo Bonzini <pbonzini@xxxxxxxxxx>, Alok Kataria <akataria@xxxxxxxxxx>, KY Srinivasan <kys@xxxxxxxxxxxxx>, John Starks <John.Starks@xxxxxxxxxxxxx>
Delivery-date: Wed, 29 Oct 2014 16:51:05 +0000
List-id: Xen developer discussion <xen-devel.lists.xen.org>

On Wed, Oct 29, 2014 at 9:29 AM, Jake Oshins <jakeo@xxxxxxxxxxxxx> wrote:
>
>>I have no objection to specifying that these reads may be quite slow.
>>Guests should only use them at boot and if they have some reason to
>>distrust their RNG pool.
>
>>The latter can legitimately happen after various types of suspend or
>>after migration (detected by VM Generation ID, for example).
>
> Just as a point of clarification, the VM Generation ID changes (at least in 
> the Hyper-V implementation) only when the VM may have observed a different 
> future, as when a VM backup is restored, a checkpoint is applied, etc.  It 
> does not change during migration, when the VM is suspended or when it is 
> rebooted.  I've heard anecdotes from application vendors saying that there is 
> some other hypervisor that actually does change the ID at these moments and 
> they wanted us to us to fix that, until I explained that I only control 
> Hyper-V.
>

Fair enough.

If the VM may indeed have observed a different future, then I would
argue that reseeding the RNG is very important -- more so than after a
normal migration.

If the VM trusts that its other history hasn't been compromised, then
merely mixing in a unique value would get most of the benefit.

--Andy

> -- Jake Oshins
>



-- 
Andy Lutomirski
AMA Capital Management, LLC

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxx
http://lists.xen.org/xen-devel

References:
- [Xen-devel] [RFC] Hypervisor RNG and enumeration
  - From: Andy Lutomirski
- Re: [Xen-devel] [RFC] Hypervisor RNG and enumeration
  - From: Ian Jackson
- Re: [Xen-devel] [RFC] Hypervisor RNG and enumeration
  - From: Andy Lutomirski
- Re: [Xen-devel] [RFC] Hypervisor RNG and enumeration
  - From: Jake Oshins

Prev by Date: Re: [Xen-devel] [PATCH v14 for-xen-4.5 11/21] x86/VPMU: Interface for setting PMU mode and flags
Next by Date: Re: [Xen-devel] [PATCH OSSTEST v2 00/20] support for ARM32 arndale and cubietruck platforms
Previous by thread: Re: [Xen-devel] [RFC] Hypervisor RNG and enumeration
Next by thread: Re: [Xen-devel] [RFC] Hypervisor RNG and enumeration
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.