CVS commit: src/sbin/rndctl
Module Name:src Committed By: riastradh Date: Tue Apr 6 22:02:40 UTC 2021 Modified Files: src/sbin/rndctl: rndctl.8 Log Message: Clarify wording further based on private feedback. To generate a diff of this commit: cvs rdiff -u -r1.28 -r1.29 src/sbin/rndctl/rndctl.8 Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.
CVS commit: src/sbin/rndctl
Module Name:src Committed By: riastradh Date: Tue Apr 6 12:32:39 UTC 2021 Modified Files: src/sbin/rndctl: rndctl.8 Log Message: Clarify security model of rndctl -S files. To generate a diff of this commit: cvs rdiff -u -r1.27 -r1.28 src/sbin/rndctl/rndctl.8 Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.
CVS commit: src/sbin/rndctl
Module Name:src Committed By: nia Date: Sun Apr 4 13:37:17 UTC 2021 Modified Files: src/sbin/rndctl: rndctl.c Log Message: rndctl(8): to -l, add a "samples" column separate to "bits" rename the "bits" column to "estimated bits". this provides a clear indication when a source is being used, but not increasing the entropy counter. this commit fixes an unrelated bug where verbose output functioned incorrectly when a class of device was specified with -t. while here, reduce code duplication. "gofer it" riastradh@ To generate a diff of this commit: cvs rdiff -u -r1.39 -r1.40 src/sbin/rndctl/rndctl.c Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.
CVS commit: src/sbin/rndctl
Module Name:src Committed By: nia Date: Sun Apr 4 12:50:31 UTC 2021 Modified Files: src/sbin/rndctl: rndctl.c Log Message: rndctl(8): remove no-longer-useful stats from -s these are always 0 now. "gofer it" riastradh@ To generate a diff of this commit: cvs rdiff -u -r1.38 -r1.39 src/sbin/rndctl/rndctl.c Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.
CVS commit: src/sbin/rndctl
Module Name:src Committed By: nia Date: Fri Apr 2 07:17:56 UTC 2021 Modified Files: src/sbin/rndctl: rndctl.c Log Message: rndctl: make -l's "Flags" field reflect current reality don't print "legacy options" RND_FLAG_ESTIMATE_TIME and "RND_FLAG_ESTIMATE_VALUE" only print "estimate" if we have actually counted any bits from something, since it's no longer really possible to "enable estimation". ideally, there should also be a "samples" field so it's clear collected bits are not being counted. To generate a diff of this commit: cvs rdiff -u -r1.37 -r1.38 src/sbin/rndctl/rndctl.c Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.
CVS commit: src/sbin/rndctl
Module Name:src Committed By: nia Date: Fri Apr 2 07:04:05 UTC 2021 Modified Files: src/sbin/rndctl: rndctl.8 Log Message: rndctl.8: reflect current reality To generate a diff of this commit: cvs rdiff -u -r1.26 -r1.27 src/sbin/rndctl/rndctl.8 Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.
CVS commit: src/sbin/rndctl
Module Name:src Committed By: simonb Date: Tue May 12 09:48:44 UTC 2020 Modified Files: src/sbin/rndctl: rndctl.c Log Message: Whitespace alignment nits. To generate a diff of this commit: cvs rdiff -u -r1.36 -r1.37 src/sbin/rndctl/rndctl.c Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.
CVS commit: src/sbin/rndctl
Module Name:src Committed By: riastradh Date: Thu May 7 19:13:38 UTC 2020 Modified Files: src/sbin/rndctl: rndctl.c Log Message: Trigger entropy consolidation before saving seed. This way, whenever /etc/security runs infrequently (daily), or the operator manually issues rndctl -S, we ensure that all samples taken during the entire boot are hashed together in the seed for the next boot. This should be infrequent enough that it's unlikely to enable the iterative-guessing attacks that we try to mitigate by not frequently consolidating entropy. To generate a diff of this commit: cvs rdiff -u -r1.35 -r1.36 src/sbin/rndctl/rndctl.c Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.
CVS commit: src/sbin/rndctl
Module Name:src Committed By: riastradh Date: Thu May 7 19:12:45 UTC 2020 Modified Files: src/sbin/rndctl: rndctl.c Log Message: Rework rndctl seed load sequence again. Go back to the book's order, now that writing to /dev/random guarantees to consolidate entropy -- this way the _next_ boot is no less secure than the current boot, in the event that entropy sources like interrupt timings provided any security that we just don't know how to measure honestly. Make sure to open the old seed to overwrite and the new seed to write anew first so that we can determine whether the medium is read-only before accepting the file's entropy estimate. To generate a diff of this commit: cvs rdiff -u -r1.34 -r1.35 src/sbin/rndctl/rndctl.c Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.
CVS commit: src/sbin/rndctl
Module Name:src Committed By: riastradh Date: Thu May 7 19:09:26 UTC 2020 Modified Files: src/sbin/rndctl: rndctl.8 Log Message: Touch up rndctl(8) a bit. To generate a diff of this commit: cvs rdiff -u -r1.25 -r1.26 src/sbin/rndctl/rndctl.8 Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.
CVS commit: src/sbin/rndctl
Module Name:src Committed By: wiz Date: Thu May 7 12:58:09 UTC 2020 Modified Files: src/sbin/rndctl: rndctl.8 Log Message: Add -i to SYNOPSIS. To generate a diff of this commit: cvs rdiff -u -r1.24 -r1.25 src/sbin/rndctl/rndctl.8 Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.
CVS commit: src/sbin/rndctl
Module Name:src Committed By: riastradh Date: Thu Apr 30 03:27:15 UTC 2020 Modified Files: src/sbin/rndctl: rndctl.c Log Message: Sort includes. To generate a diff of this commit: cvs rdiff -u -r1.32 -r1.33 src/sbin/rndctl/rndctl.c Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.
CVS commit: src/sbin/rndctl
Module Name:src Committed By: riastradh Date: Thu Apr 30 03:24:48 UTC 2020 Modified Files: src/sbin/rndctl: rndctl.c Log Message: Accept both byte orders for random seed in `rndctl -L'. The file format was defined with a machine-dependent 32-bit integer field (the estimated number of bits of entropy in the process that generated it). Take whichever byte order gives a number that is reasonable, i.e. lower than the number of bits in the buffer. Continue to have `rndctl -S' generate it in machine-dependent byte order for now, so that if you roll back to an older rndctl(8) then `rndctl -L' on the same machine will still be able to load it with the right entropy estimate. In a future revision, perhaps we can change it to be little-endian. To generate a diff of this commit: cvs rdiff -u -r1.31 -r1.32 src/sbin/rndctl/rndctl.c Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.
CVS commit: src/sbin/rndctl
Module Name:src
Committed By: christos
Date: Tue Jan 14 23:13:36 UTC 2020
Modified Files:
src/sbin/rndctl: Makefile
Log Message:
.include bsd.own.mk for ${NETBSDSRCDIR}
To generate a diff of this commit:
cvs rdiff -u -r1.4 -r1.5 src/sbin/rndctl/Makefile
Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.
CVS commit: src/sbin/rndctl
Module Name:src Committed By: riastradh Date: Fri Dec 6 14:43:18 UTC 2019 Modified Files: src/sbin/rndctl: Makefile rndctl.8 rndctl.c Added Files: src/sbin/rndctl: namespace.h Log Message: Teach `rndctl -L' to update the seed file, not just delete it. The seed file is updated by entering the old seed into the system and then hashing the old seed together with data from /dev/urandom, and writing it atomically with write-to-temporary/rename-to-permanent. This way, interruption by crash or power loss does not obliterate your persistent entropy (unless it causes file system corruption). To generate a diff of this commit: cvs rdiff -u -r1.3 -r1.4 src/sbin/rndctl/Makefile cvs rdiff -u -r0 -r1.1 src/sbin/rndctl/namespace.h cvs rdiff -u -r1.22 -r1.23 src/sbin/rndctl/rndctl.8 cvs rdiff -u -r1.30 -r1.31 src/sbin/rndctl/rndctl.c Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.
CVS commit: src/sbin/rndctl
Module Name:src Committed By: riastradh Date: Mon Apr 13 22:18:50 UTC 2015 Modified Files: src/sbin/rndctl: rndctl.c Log Message: Use instead of . To generate a diff of this commit: cvs rdiff -u -r1.29 -r1.30 src/sbin/rndctl/rndctl.c Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.
CVS commit: src/sbin/rndctl
Module Name:src Committed By: wiz Date: Sun Aug 10 17:13:14 UTC 2014 Modified Files: src/sbin/rndctl: rndctl.c Log Message: Sync usage with manpage a bit more. To generate a diff of this commit: cvs rdiff -u -r1.28 -r1.29 src/sbin/rndctl/rndctl.c Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.
CVS commit: src/sbin/rndctl
Module Name:src Committed By: wiz Date: Sun Aug 10 17:13:02 UTC 2014 Modified Files: src/sbin/rndctl: rndctl.8 Log Message: Sort options and mark them as optional. Bump date for previous. To generate a diff of this commit: cvs rdiff -u -r1.21 -r1.22 src/sbin/rndctl/rndctl.8 Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.
CVS commit: src/sbin/rndctl
Module Name:src Committed By: apb Date: Wed Jan 15 15:05:27 UTC 2014 Modified Files: src/sbin/rndctl: rndctl.c Log Message: Overwrite the seed file from the beginning, using pwrite(2). To generate a diff of this commit: cvs rdiff -u -r1.26 -r1.27 src/sbin/rndctl/rndctl.c Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.
CVS commit: src/sbin/rndctl
Module Name:src Committed By: joerg Date: Wed Jan 15 10:13:25 UTC 2014 Modified Files: src/sbin/rndctl: rndctl.c Log Message: Fix arguments for write. To generate a diff of this commit: cvs rdiff -u -r1.25 -r1.26 src/sbin/rndctl/rndctl.c Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.
CVS commit: src/sbin/rndctl
Module Name:src Committed By: jruoho Date: Tue Aug 14 14:41:07 UTC 2012 Modified Files: src/sbin/rndctl: rndctl.c Log Message: Use _PATH_URANDOM from paths(3). To generate a diff of this commit: cvs rdiff -u -r1.24 -r1.25 src/sbin/rndctl/rndctl.c Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.
CVS commit: src/sbin/rndctl
Module Name:src Committed By: apb Date: Sat Dec 17 13:18:21 UTC 2011 Modified Files: src/sbin/rndctl: rndctl.c Log Message: Make "rndctl -L" overwrite the file with zeros, not with the same data that was just read from the file. To generate a diff of this commit: cvs rdiff -u -r1.22 -r1.23 src/sbin/rndctl/rndctl.c Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.
CVS commit: src/sbin/rndctl
Module Name:src Committed By: wiz Date: Wed Nov 23 12:15:30 UTC 2011 Modified Files: src/sbin/rndctl: rndctl.8 Log Message: Sort option descriptions, bump date for previous. To generate a diff of this commit: cvs rdiff -u -r1.19 -r1.20 src/sbin/rndctl/rndctl.8 Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.
CVS commit: src/sbin/rndctl
Module Name:src Committed By: pgoyette Date: Sat Oct 1 02:55:00 UTC 2011 Modified Files: src/sbin/rndctl: rndctl.8 Log Message: Fix typo To generate a diff of this commit: cvs rdiff -u -r1.17 -r1.18 src/sbin/rndctl/rndctl.8 Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.
CVS commit: src/sbin/rndctl
Module Name:src Committed By: joerg Date: Sat Aug 27 18:49:00 UTC 2011 Modified Files: src/sbin/rndctl: rndctl.c Log Message: static + const + __dead To generate a diff of this commit: cvs rdiff -u -r1.19 -r1.20 src/sbin/rndctl/rndctl.c Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.
