| To: | "David S. Miller" <davem@xxxxxxxxxx> |
|---|---|
| Subject: | Re: [PATCH] fix secure tcp sequence number generation |
| From: | Manfred Spraul <manfred@xxxxxxxxxxxxxxxx> |
| Date: | Mon, 04 Oct 2004 06:06:18 +0200 |
| Cc: | netdev@xxxxxxxxxxx |
| In-reply-to: | <20041003150052.4dba0c60.davem@redhat.com> |
| References: | <415EEF0E.3080808@colorfullife.com> <20041003150052.4dba0c60.davem@redhat.com> |
| Sender: | netdev-bounce@xxxxxxxxxxx |
| User-agent: | Mozilla/5.0 (X11; U; Linux i686; fr-FR; rv:1.7.3) Gecko/20040922 |
David S. Miller wrote: The change to revision 1.49 of random.c, with the comment "dev/random: Fix latency in rekeying sequence number"On Sat, 02 Oct 2004 20:10:22 +0200 Manfred Spraul <manfred@xxxxxxxxxxxxxxxx> wrote: http://linux.bkbits.net:8080/linux-2.5/diffs/drivers/char/random.c@xxxx There are two problems with that patch: - The first call of check_and_rekey must be synchroneous, otherwise the secret stays 0 for the first ISN values after boot. - schedule_work() doesn't provide synchronization, thus rekey_seq_generator could end up running twice. I tried to fix it and then I noticed that it's possible to simplify the code a lot. -- Manfred |
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| ||
| Previous by Date: | PATCH: [SKBUFF] do some more skb_set_link_header conversions, Arnaldo Carvalho de Melo |
|---|---|
| Next by Date: | Re: [PATCH 2.6.9-rc3-mm1] 3c59x: Make use of generic_mii_ioctl, Steffen Klassert |
| Previous by Thread: | Re: [PATCH] fix secure tcp sequence number generation, David S. Miller |
| Next by Thread: | Re: [PATCH] fix secure tcp sequence number generation, David S. Miller |
| Indexes: | [Date] [Thread] [Top] [All Lists] |