Michael McConville sccs.swarthmore.edu> writes:
> https://www.hyperelliptic.org/tanja/vortraege/random.pdf
made my day:
“The way RDRAND is being used in kernels <= 3.12.3 allows it to
cancel out the other entropy. See extract buf().”
“if I make RDRAND return [EDX] ^ 0x41414141, /dev/urand
This was just an experiment, but it might be worth sharing.
Using RdRand in userland software is risky, and not just for
tinfoil-hattish reasons:
https://www.hyperelliptic.org/tanja/vortraege/random.pdf
Intel suggests that people call it directly. As chips with RdRand become
more common,
