[libvirt-users] Efficacy of jitterentropy RNG on qemu-kvm Guests
Martin Kletzander
mkletzan at redhat.com
Thu Aug 16 13:04:25 UTC 2018
On Fri, Aug 10, 2018 at 08:33:00PM +0000, procmem wrote:
>Hello. I'm a distro maintainer and was wondering about the efficacy of
>entropy daemons like haveged and jitterentropyd in qemu-kvm. One of the
>authors of haveged [0] pointed out if the hardware cycles counter is
>emulated and deterministic, and thus predictible. He therefore does not
>recommend using HAVEGE on those systems. Is this the case with KVM's
>counters?
>
I don't know the answer. But try asking on qemu-discuss at nongnu.org or maybe
KVM-related ML.
Have a nice day,
Martin
>PS. I will be setting VM CPU settings to host-passthrough.
>
>Bonus: Also if anyone knows the answer to this question about Xen please
>let me know because its the other main platform we support and they
>don't have the luxury of virtio-rng in PVH mode.
>
>Thanks.
>
>[0]
>https://github.com/BetterCrypto/Applied-Crypto-Hardening/commit/cf7cef7a870c1b77089b1bd6209ded6525b5a4e0#commitcomment-23006392
>
>_______________________________________________
>libvirt-users mailing list
>libvirt-users at redhat.com
>https://www.redhat.com/mailman/listinfo/libvirt-users
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: Digital signature
URL: <http://listman.redhat.com/archives/libvirt-users/attachments/20180816/1d4888c4/attachment.sig>
More information about the libvirt-users
mailing list