From mboxrd@z Thu Jan 1 00:00:00 1970 Reply-To: kernel-hardening@lists.openwall.com Date: Tue, 24 May 2016 23:23:24 +0200 From: Emese Revfy Message-Id: <20160524232324.45fbcf77916866f30b0d6cec@gmail.com> In-Reply-To: References: <20160524001405.3e6abd1d5a63a871cc366cff@gmail.com> <20160524001529.0e69232eff0b1b5bc566a763@gmail.com> Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Subject: [kernel-hardening] Re: [PATCH v1 1/3] Add the latent_entropy gcc plugin To: Kees Cook Cc: "kernel-hardening@lists.openwall.com" , PaX Team , Brad Spengler , Michal Marek , LKML , Masahiro Yamada , linux-kbuild , Theodore Ts'o , Andrew Morton , Linux-MM , Jens Axboe , Al Viro , Paul McKenney , Ingo Molnar , Thomas Gleixner , bart.vanassche@sandisk.com, "David S. Miller" List-ID: On Tue, 24 May 2016 10:32:15 -0700 Kees Cook wrote: > Also, does this matter that it's non-atomic? It seems like the u64 > below is being written to by multiple threads and even read by > multiple threads. Am I misunderstanding something? The non-atomic accesses are intentional because they can extract more latent entropy from these data races. > > [...] > > new file mode 100644 > > index 0000000..7295c39 > > --- /dev/null > > +++ b/scripts/gcc-plugins/latent_entropy_plugin.c > > I feel like most of the functions in this plugin could use some more > comments about what each one does. I think the important parts are commented (most parts just use the gcc API). Where would you like more comments? -- Emese