On Sun, 2019-02-24 at 20:10 +0000, Thorsten Glaser wrote: > Hi Philipp, > > >FTR this is supposedly fixed on the main architectures featuring an > RNG > >in the CPU by linux 4.19.20-1, which enabled RANDOM_TRUST_CPU. Which > Ben > > that’s what I referred to by… > > >>• it does not use/add CPU RNG output where present > >> ‣ though Linux can now do that itself, some command-line flag… > > … but that only helps if the CPU has such instructions, [...]
Indeed, on x86 this requires the RDRAND instruction which Intel introduced in 2011 (Ivy Bridge core) and AMD only implemented in 2015 (Excavator core). Ben. -- Ben Hutchings The obvious mathematical breakthrough [to break modern encryption] would be development of an easy way to factor large prime numbers. - Bill Gates
signature.asc
Description: This is a digitally signed message part