freebsd

mirror of https://git.FreeBSD.org/src.git synced 2024-12-18 10:35:55 +00:00

Mirror of the FreeBSD src repository https://git.FreeBSD.org/src.git .

Go to file

Conrad Meyer e8e1f0b420 Fortuna: Fix false negatives in is_random_seeded() (1) We may have had sufficient entropy to consider Fortuna seeded, but the random_fortuna_seeded() function would produce a false negative if fs_counter was still zero. This condition could arise after random_harvestq_prime() processed the /boot/entropy file and before any read-type operation invoked "pre_read()." Fortuna's fs_counter variable is only incremented (if certain conditions are met) by reseeding, which is invoked by random_fortuna_pre_read(). is_random_seeded(9) was introduced in r346282, but the function was unused prior to r346358, which introduced this regression. The regression broke initial seeding of arc4random(9) and broke periodic reseeding[A], until something other than arc4random(9) invoked read_random(9) or read_random_uio(9) directly. (Such as userspace getrandom(2) or read(2) of /dev/random. By default, /etc/rc.d/random does this during multiuser start-up.) (2) The conditions under which Fortuna will reseed (including initial seeding) are: (a) sufficient "entropy" (by sheer byte count; default 64) is collected in the zeroth pool (of 32 pools), and (b) it has been at least 100ms since the last reseed (to prevent trivial DoS; part of FS&K design). Prior to this revision, initial seeding might have been prevented if the reseed function was invoked during the first 100ms of boot. This revision addresses both of these issues. If random_fortuna_seeded() observes a zero fs_counter, it invokes random_fortuna_pre_read() and checks again. This addresses the problem where entropy actually was sufficient, but nothing had attempted a read -> pre_read yet. The second change is to disable the 100ms reseed guard when Fortuna has never been seeded yet (fs_lasttime == 0). The guard is intended to prevent gratuitous subsequent reseeds, not initial seeding! Machines running CURRENT between r346358 and this revision are encouraged to refresh when possible. Keys generated by userspace with /dev/random or getrandom(9) during this timeframe are safe, but any long-term session keys generated by kernel arc4random consumers are potentially suspect. [A]: Broken in the sense that is_random_seeded(9) false negatives would cause arc4random(9) to (re-)seed with weak entropy (SHA256(cyclecount \|\| FreeBSD_version)). PR: 237869 Reported by: delphij, dim Reviewed by: delphij Approved by: secteam(delphij) X-MFC-With: r346282, r346358 (if ever) Security: yes Sponsored by: Dell EMC Isilon Differential Revision: https://reviews.freebsd.org/D20239		2019-05-13 19:35:35 +00:00
bin	Restore the -n flag parsing, but ignore it.	2019-04-24 05:24:10 +00:00
cddl	Fix dataset name comparison in zfs_compare().	2019-05-08 01:35:43 +00:00
contrib	Provide separate accounting for user-wired pages.	2019-05-13 16:38:48 +00:00
crypto	Add workaround for a QoS-related bug in VMWare Workstation.	2019-03-27 15:17:29 +00:00
etc	Revert r347356 and r347371	2019-05-13 12:38:33 +00:00
gnu	Fix gdb/kgdb build under WITH_PIE	2019-04-01 19:19:51 +00:00
include	Introduce funlinkat syscall that always us to check if we are removing	2019-04-06 09:34:26 +00:00
kerberos5	Add WITH_PIE knob to build Position Independent Executables	2019-02-15 22:22:38 +00:00
lib	Extend the libcap_sysctl tests.	2019-05-13 17:53:03 +00:00
libexec	Add ipsec.ko to required_modules for rc.d/ipsec script.	2019-05-06 08:30:53 +00:00
release	Bump EC2 AMI filesystem size up to 4000 MB.	2019-05-08 21:03:03 +00:00
rescue	rescue: set NO_SHARED in Makefile	2018-11-19 22:18:18 +00:00
sbin	ifconfig(8): Add kld mappings for ipsec/enc	2019-05-10 13:18:22 +00:00
secure	Add workaround for a QoS-related bug in VMWare Workstation.	2019-03-27 15:17:29 +00:00
share	Add usage example to tree(3).	2019-05-08 18:49:59 +00:00
stand	loader: use DPRINTF in biosdisk.c and define safe DPRINTF	2019-05-09 13:12:43 +00:00
sys	Fortuna: Fix false negatives in is_random_seeded()	2019-05-13 19:35:35 +00:00
targets	retire LINKER_FEATURES filter flag	2018-11-12 20:44:22 +00:00
tests	Try to unbreak the build after r347425.	2019-05-10 08:16:29 +00:00
tools	revert QEMU q35 platform use from r346748	2019-04-30 15:28:52 +00:00
usr.bin	Provide separate accounting for user-wired pages.	2019-05-13 16:38:48 +00:00
usr.sbin	Factor code into two new functions in preparation for a future commit.	2019-05-11 22:41:58 +00:00
.arcconfig
.arclint
.cirrus.yml	Cirrus-CI: pass OVMF env var to test script for upcoming changes	2019-04-11 13:01:26 +00:00
.gitattributes	MK_ZFS -> {MK_ZFS\|MK_LOADER_ZFS}, this is so we can diable userland / kernel	2019-01-05 22:45:20 +00:00
.gitignore	Ignore _.universe-toolchain file.	2018-07-01 13:50:37 +00:00
COPYRIGHT	Happy New Year 2019!	2019-01-01 00:25:25 +00:00
LOCKS
MAINTAINERS	Update/reformat maintainer entries that I am a part of	2019-04-29 18:48:43 +00:00
Makefile	Fix a typo when sanity checking in the bootstrap-tools target	2019-04-09 16:17:31 +00:00
Makefile.inc1	Add wc(1) to native-xtools so that it can be used in qemu-user jails	2019-05-08 15:17:36 +00:00
Makefile.libcompat	Use ...-freebsd13.0 in -target strings.	2018-11-12 16:55:20 +00:00
Makefile.sys.inc
ObsoleteFiles.inc	Add cap_sysctl(3) and cap_sysctlnametomib(3).	2019-05-13 17:49:54 +00:00
README	Import OpenSSL 1.1.1b.	2019-02-26 18:06:51 +00:00
README.md	README: add generic notes about GENERIC and NOTES	2018-06-17 19:44:24 +00:00
UPDATING	Add an UPDATING entry and bump __FreeBSD_version for r347532.	2019-05-13 18:48:08 +00:00

README.md

FreeBSD Source:

This is the top level of the FreeBSD source directory. This file was last revised on: FreeBSD

FreeBSD is an operating system used to power modern servers, desktops, and embedded platforms. A large community has continually developed it for more than thirty years. Its advanced networking, security, and storage features have made FreeBSD the platform of choice for many of the busiest web sites and most pervasive embedded networking and storage devices.

For copyright information, please see the file COPYRIGHT in this directory. Additional copyright information also exists for some sources in this tree - please see the specific source directories for more information.

The Makefile in this directory supports a number of targets for building components (or all) of the FreeBSD source tree. See build(7), config(8), https://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/makeworld.html, and https://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/kernelconfig.html for more information, including setting make(1) variables.

Source Roadmap:

bin		System/user commands.

cddl		Various commands and libraries under the Common Development
		and Distribution License.

contrib		Packages contributed by 3rd parties.

crypto		Cryptography stuff (see crypto/README).

etc		Template files for /etc.

gnu		Various commands and libraries under the GNU Public License.
		Please see gnu/COPYING* for more information.

include		System include files.

kerberos5	Kerberos5 (Heimdal) package.

lib		System libraries.

libexec		System daemons.

release		Release building Makefile & associated tools.

rescue		Build system for statically linked /rescue utilities.

sbin		System commands.

secure		Cryptographic libraries and commands.

share		Shared resources.

stand		Boot loader sources.

sys		Kernel sources.

sys/<arch>/conf Kernel configuration files. GENERIC is the configuration
		used in release builds. NOTES contains documentation of
		all possible entries.

tests		Regression tests which can be run by Kyua.  See tests/README
		for additional information.

tools		Utilities for regression testing and miscellaneous tasks.

usr.bin		User commands.

usr.sbin	System administration commands.

For information on synchronizing your source tree with one or more of the FreeBSD Project's development branches, please see:

https://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/current-stable.html