src/sys/dev/random/yarrow.c, branch release/5.2.1 FreeBSD source tree https://cgit-dev.freebsd.org/src/atom?h=release%2F5.2.1 2003-11-17T23:02:21Z Overhaul the entropy device: 2003-11-17T23:02:21Z Mark Murray markm@FreeBSD.org 2003-11-17T23:02:21Z urn:sha1:0887c8c110da2f060bc422e6942320054bcc755d o Each source gets its own queue, which is a FIFO, not a ring buffer. The FIFOs are implemented with the sys/queue.h macros. The separation is so that a low entropy/high rate source can't swamp the harvester with low-grade entropy and destroy the reseeds. o Each FIFO is limited to 256 (set as a macro, so adjustable) events queueable. Full FIFOs are ignored by the harvester. This is to prevent memory wastage, and helps to keep the kernel thread CPU usage within reasonable limits. o There is no need to break up the event harvesting into ${burst} sized chunks, so retire that feature. o Break the device away from its roots with the memory device, and allow it to get its major number automagically. Use __FBSDID(). 2003-08-24T17:55:58Z David E. O'Brien obrien@FreeBSD.org 2003-08-24T17:55:58Z urn:sha1:aad970f1fee9a2a3e5a0f880be9b87c6193b3bd1 Also some minor style cleanups. Fix a buffer overrun in /dev/random which, due to the nature of the 2002-12-12T17:38:45Z Mark Murray markm@FreeBSD.org 2002-12-12T17:38:45Z urn:sha1:340a8a91c378a893b1e15c57f45f4361ab082321 kernel memory allocator, is harmless. This could be a problem for other systems, though. I've modified Darren's patch a little. Original patch by: Darren Schack, Isilon Systems, Inc <darrens@isilon.com> Also analysed by: SGI, and in particular Divy Le Ray of SGI OK'ed by: re(rwatson) Remove #ifdef'ed Giant mutex wrappers round debugging statements. 2002-09-21T21:44:19Z Mark Murray markm@FreeBSD.org 2002-09-21T21:44:19Z urn:sha1:a0a95acece1d200759bbe965fc7cc3d772cb3477 Upgrade the random device to use a "real" hash instead of building 2002-07-15T13:58:35Z Mark Murray markm@FreeBSD.org 2002-07-15T13:58:35Z urn:sha1:bbf09ad887f1ebc18052ee12f5074c05d69a4e46 one out of a block cipher. This has 2 advantages: 1) The code is _much_ simpler 2) We aren't committing our security to one algorithm (much as we may think we trust AES). While I'm here, make an explicit reseed do a slow reseed instead of a fast; this is in line with what the original paper suggested. Change callers of mtx_init() to pass in an appropriate lock type name. In 2002-04-04T21:03:38Z John Baldwin jhb@FreeBSD.org 2002-04-04T21:03:38Z urn:sha1:6008862bc2494a2094e15699f4f73fad800b6bcd most cases NULL is passed, but in some cases such as network driver locks (which use the MTX_NETWORK_LOCK macro) and UMA zone locks, a name is used. Tested on: i386, alpha, sparc64 Massive lint-inspired cleanup. 2002-03-03T19:44:22Z Mark Murray markm@FreeBSD.org 2002-03-03T19:44:22Z urn:sha1:e119960112f35b3ec1179e262cccde05b59a0309 Remove unneeded includes. Deal with unused function arguments. Resolve a boatload of signed/unsigned imcompatabilities. Etc. Staticise the random_state array. 2002-01-10T00:09:21Z Mike Smith msmith@FreeBSD.org 2002-01-10T00:09:21Z urn:sha1:5390e1bc8fe871d8ca5ddcd288d918b1c538b4b5 Reviewed by: markm Catch up to header include changes: 2001-03-28T09:17:56Z John Baldwin jhb@FreeBSD.org 2001-03-28T09:17:56Z urn:sha1:f34fa851e0b97ea3637d73827346927014e1b137 - <sys/mutex.h> now requires <sys/systm.h> - <sys/mutex.h> and <sys/sx.h> now require <sys/lock.h> Fix nasty corruption problem where a 64bit variable was being used 2001-03-28T06:27:42Z Mark Murray markm@FreeBSD.org 2001-03-28T06:27:42Z urn:sha1:d2de224265fcf2acd9e572fddeae27268a62f4e0 (overflowed) to catch a 256bit result. Hard work done by: jhb