Re: cprng_fast implementation benchmarks

2014-04-26 Thread Paul_Koning 

On Apr 25, 2014, at 10:09 PM, Thor Lancelot Simon  wrote:

> On Fri, Apr 25, 2014 at 08:58:54PM +, paul_kon...@dell.com wrote:
>> 
>> But what X are we talking about?  Security analysis does not come from
>> generalities, it comes from the point by point analysis of specific
>> questions.  You correctly point out that some attacks may not be
>> relevant.  Which attacks are not relevant, and which ones are, and why?
> 
> I feel like you keep moving the goal posts. 

That was not my intent.  But I can see why it seems that way, and I apologize 
for that.

What’s going on here is that I’m learning about what is being proposed as I 
work through a sequence of messages.  

paul

Re: Why does the fs_lookup need?

2014-04-26 Thread David Holland 
ok, let me try to answer this...

On Fri, Apr 11, 2014 at 12:13:52PM +0400, Ilia Zykov wrote:
 > I don't understand why now LOOKUP() is implemented on the two
 > levels - RFS and VFS.

Dividing a pathname into components (by splitting on '/') and
processing those components one at a time is done at the VFS level
because it's common to all file system types.

(One could have a file system that used different path syntax; but we
don't and aren't likely to, and pushing this logic into the file
system would make handling symbolic links much more complicated.)

However, looking up a filename and producing a vnode for it is done at
the file system ("RFS") level because it's file system specific. To do
lookup requires knowledge of file system data structures.

(The reason implementing file-system-level lookup using readdir isn't
good is that many file systems use data structures for directories
that provide fast lookup access; e.g. if directories are btrees,
listing the directory and searching the listing would be silly.)

As for why the lookup vnode operation we currently have is a horrible
mess -- that is because the design was not carefully worked out in the
first place and then was allowed to agglomerate for 15 years or so
without receiving any attention. Now it's a legacy mess and the
cleanup process is slow and expensive.

-- 
David A. Holland
dholl...@netbsd.org

Re: Vnode API change: add global vnode cache

2014-04-26 Thread David Holland 
On Tue, Apr 15, 2014 at 04:11:58PM +, Taylor R Campbell wrote:
 >New diff at http://www.netbsd.org/~hannken/vnode-pass6-3.diff
 > 
 >Plan to commit early wednesday ...
 > 
 > I still don't think this approach is right.  It makes a long-term copy
 > of logic in getnewvnode (because this vcache(9) will not be applicable
 > everywhere), there's no reason to use kpause or any new condvars when
 > we already have one inside each vnode which we'll be using anyway in
 > vget, and it still increases the overhead of every vnode using it.
 > 
 > I don't object to the principle of VFS_LOAD_NODE, or VOP_LOAD, but at
 > the moment I think it will cause greater divergence between file
 > systems and maintenance headaches as a result.
 > 
 > As an alternative, I propose the set of patches at
 > , to do the
 > following:
 > [...]

Wading into this after the fact, I see the following points:

 - Duplicating the getnewvnode logic is definitely bad; we have enough
cruft without adding new redundant but not quite equivalent code
paths.

 - It seems to me that in the long run, all of this baloney should be
hidden away inside the vfs layer; filesystems that use the vnode cache
should only need to call vcache_get, and the only thing that should
ever see a partially initialized vnode is VOP_LOAD and nothing outside
the vnode cache should ever see a vnode with refcount zero. This in
particular means that all the various forms of vget() should be hidden
away, as should getnewvnode. It seems to me like both of these patch
sets are steps in this direction, but we're far enough away from the
destination that it's hard to choose between them.

 - A while back (one or two rounds ago) I floated an idea that had
separate vnode key objects for the same reason they appear here: to
make insertion atomic. Riastradh convinced me at the time that this
wasn't necessary, so I dropped it and never got around to posting it
on tech-kern. However, it had a characteristic that I don't see here:
locks in the vnode keys. The idea of that was to introduce a level of
indirection so that nothing like VI_CHANGING was needed: while loading
a vnode, you unlock the table but leave the key locked, and that takes
care, in an orderly way, of making sure nobody else sees it. If we're
going to end up with vnode key objects, I think they should contain
locks in favor of having exposed or semi-exposed state flags.

 - There are still filesystems that do not use the vnode cache. Half
the problem with the legacy scheme we have is that it tries to provide
the expire half of the cache to all filesystems, even those that don't
use or need the lookup half of the cache. This is fundamentally wrong.
I think rather than trying to continue with this folly we should do
something different that keeps these filesystems separate.

 - Question 1: How much overhead would it really cause if we didn't
bother to cycle tmpfs vnodes "in" and "out" but just materialized them
along with the tmpfs_node and kept them around until someone destroys
the tmpfs_node? vnodes have a fair amount of slop in them, but they
aren't that big and if you're using tmpfs you presumably have enough
memory to keep whole files in RAM anyway. In this case we could just
provide a constructor and destructor for non-cache vnodes, decouple
that from the lifecycle logic (and firewall it off with plenty of
assertions and such) and a lot of the silly goes away.

 - Question 2: The other obvious candidates for not using the vnode
cache are virtual constructs like kernfs and procfs. ISTM that
"loading" and "unloading" their vnodes is equally pointless and that
the same solution applies. The question is: are there any other fses
that wouldn't use the vnode cache for some other reason, such that
this reasoning wouldn't apply? I can't think of any, and it seems like
anything where there are genuine load and unload operations for vnodes
vnodes should be using the cache, but that doesn't prove anything.


Also, it should be vcache_get(), not intern; with all "intern"
operations I can think of, you pass in the object to be interned,
not just a key for it. If we had vcache_intern(), the model would be
that you consed up a vnode, then passed it (along with the key) to
vcache_intern(), which would then either insert it into the cache and
return it, or destroy it and return the existing equivalent one. This
is not really what we want.

and FWIW, I favor VOP_LOAD over VFS_LOADVNODE.

-- 
David A. Holland
dholl...@netbsd.org

Re: cprng_fast implementation benchmarks

2014-04-26 Thread Greg Troxel 

After reading all these messages a bit too fast, it seems to be that we
can add to Thor's analysis

  Moving the fast-not-super-strong PRNG to ChaCha8 is clearly a step
  forward from what we have now.  (really this is his conclusion)

  It remains for Someone to do more formal work (perhaps in an academic
  context) to give specifications for good-enough-random, to analayze if
  our implementation meets the specification, and if our uses can
  reasonably rely on them.   (I think the lack of this is the essence of
  what Paul is pointing out, and it's a fair point).

I'll ask around to see if I can find a spare intern.  (That's sort of a
joke but not 100%; this does seem like useful work to do.)


pgp9yfd0JhRlX.pgp
Description: PGP signature