summaryrefslogtreecommitdiffstats
path: root/security/tomoyo
diff options
context:
space:
mode:
authorJason A. Donenfeld <Jason@zx2c4.com>2022-02-23 13:43:44 +0100
committerJason A. Donenfeld <Jason@zx2c4.com>2022-03-13 02:00:56 +0100
commitae099e8e98fb01395228628be5a4661e3bd86fe4 (patch)
treef548673becb7e4fc9baa0372b6a96edd87eb43f7 /security/tomoyo
parentrandom: don't let 644 read-only sysctls be written to (diff)
downloadlinux-ae099e8e98fb01395228628be5a4661e3bd86fe4.tar.xz
linux-ae099e8e98fb01395228628be5a4661e3bd86fe4.zip
random: add mechanism for VM forks to reinitialize crng
When a VM forks, we must immediately mix in additional information to the stream of random output so that two forks or a rollback don't produce the same stream of random numbers, which could have catastrophic cryptographic consequences. This commit adds a simple API, add_vmfork_ randomness(), for that, by force reseeding the crng. This has the added benefit of also draining the entropy pool and setting its timer back, so that any old entropy that was there prior -- which could have already been used by a different fork, or generally gone stale -- does not contribute to the accounting of the next 256 bits. Cc: Dominik Brodowski <linux@dominikbrodowski.net> Cc: Theodore Ts'o <tytso@mit.edu> Cc: Jann Horn <jannh@google.com> Cc: Eric Biggers <ebiggers@google.com> Reviewed-by: Ard Biesheuvel <ardb@kernel.org> Signed-off-by: Jason A. Donenfeld <Jason@zx2c4.com>
Diffstat (limited to 'security/tomoyo')
0 files changed, 0 insertions, 0 deletions