[Whonix-devel] How to confirm jitter .ko was loaded
procmem at riseup.net
procmem at riseup.net
Wed Apr 24 20:32:59 CEST 2019
On 4/24/19 6:21 PM, Stephan Mueller wrote:
> Am Mittwoch, 24. April 2019, 19:30:28 CEST schrieb procmem at riseup.net:
>
> Hi,
>
>> Hi Stephan. Whonix dev here. We are a VM based privacy distro and so are
>> very interested in jitter for our RNG needs.
>>
>> I was wondering how we can confirm jitterentropy's kernel module was
>> successfully loaded during boot so we can be sure it works on some
>> platforms.
> cat /proc/crypto | grep jitter
Thanks for your great input. I'm not going to turn this into a support
thread, but I wanted to get to the bottom of this. This command doesn't
return anything for me. We have jitterentropy-rngd installed with a 4.19
kernel for Debian Buster. The service reports it's up and running though.
>> Do you know if it should be functional on the Xen hypervisor where Linux
>> does not have full control over bare-metal?
> Yes, definitely. Besides, the Jitter RNG will not initialize if it finds that
> the platform does not provide the correct properties for the RNG. The Jitter
> RNG has also a runtime check. If that runtime check identifies platform
> failures, you will see that in dmesg :-)
I see. No such errors though.
> Though, please note that the Jitter RNG in the kernel ONLY seeds the kernel
> DRBG and NOT /dev/random or /dev/urandom. If you want to seed them, you need
> either the jitterentropy-rngd (which seems to be currently tested) or the
> latest version of rngd which contains the JitterRNG as one noise source.
>> cc/ our mailing list do our users can benefit.
>
>
> Ciao
> Stephan
>
>
More information about the Whonix-devel
mailing list