virtio-dev message

Subject: [PATCH RFC 0/3] virtio-rng based entropy leak reporting

From: "Michael S. Tsirkin" <mst@redhat.com>
To: virtio-comment@lists.oasis-open.org, virtio-dev@lists.oasis-open.org, "Cali, Marco" <xmarcalx@amazon.co.uk>, "Graf (AWS), Alexander" <graf@amazon.de>, "Chalios, Babis" <bchalios@amazon.es>, "Jason A. Donenfeld" <Jason@zx2c4.com>
Date: Mon, 21 Nov 2022 11:30:16 -0500

Generally, entropy only grows. However, there are cases where
it goes down - for example, consider generating a one time
pad where someone managed to use a side channel to
steal its contents. By combining the seemingly random
pad with the stolen contents we have reversed the entropy.

This actually happens within VMs e.g. when time is reversed due
to snapshoting. Existing approaches for VMs include Microsoft's
VM GEN ID.

This draft proposes a feature in virtio rng for reporting such
leaks.

Patches 1,2 refactor existing draft text. Patch 3 adds new functionality.

TODO:
	document theory of operation
	add conformance clauses


Michael S. Tsirkin (3):
  rng: move to a file of its own
  rng: be specific about the virtqueue
  rng: leak detection support

 content.tex    |  43 +--------------------
 virtio-rng.tex | 102 +++++++++++++++++++++++++++++++++++++++++++++++++
 2 files changed, 103 insertions(+), 42 deletions(-)
 create mode 100644 virtio-rng.tex

-- 
MST

Follow-Ups:
- [PATCH RFC 2/3] rng: be specific about the virtqueue
  - From: "Michael S. Tsirkin" <mst@redhat.com>
- [PATCH RFC 3/3] rng: leak detection support
  - From: "Michael S. Tsirkin" <mst@redhat.com>
- [PATCH RFC 1/3] rng: move to a file of its own
  - From: "Michael S. Tsirkin" <mst@redhat.com>