check if the haveged entropy gathering daemon passes entropy tests in Qubes
Closed, ResolvedPublic
Actions

Assigned To

Authored By

	Patrick
	Jan 1 2015, 4:37 PM

Description

General info on entropy:
https://www.whonix.org/wiki/Dev/Entropy

Instructions on how to test haveged:
https://www.whonix.org/wiki/Dev/Entropy#haveged

Forum Discussion:

https://www.whonix.org/forum/index.php/topic,871.0.html

Details

Impact: Needs Triage

Related Objects

Mentioned Here: T202: check available entropy in whonixcheck

Event Timeline

Patrick created this task.Jan 1 2015, 4:37 PM

Patrick raised the priority of this task from to Normal.

Patrick updated the task description. (Show Details)

Patrick added projects: Qubes, security.

Patrick added a subscriber: Patrick.

• WhonixQubes updated the task description. (Show Details)Jan 11 2015, 11:13 PM

Patrick added a project: Whonix.Jan 13 2015, 11:31 PM

Still have to get to this later, but...

Just saw T202.

Ran this several times in a row on Qubes + Whonix:

cat /proc/sys/kernel/random/entropy_avail

For me, it is consistently putting out results steadily in the 4000+ down to 1000+ range and then replenishing back up to 4000+ as it gets used up, across every ~10 seconds.

Check entropy available bits, 112 is FIPS-140 requirement

Hopefully this is a gauge of the same general entropy pool for the system and hopefully a positive indicator.

Yeah, well, I don't think this /proc/sys/kernel/random/entropy_avail test is particularly meaningful.

Ok, good to know. Will certainly have to get to a more thorough review of Whonix entropy in Qubes.

Patrick added projects: qubes-whonix 12, Whonix 12.Jun 11 2015, 3:52 AM

Patrick set Impact to Needs Triage.

Patrick added subscribers: nrgaway, marmarek.

Couldn't find any irregularities compared to non-Qubes systems.