Implement High-Quality Random Number Generation Using AES-CTR Mode with OpenSSL and AES-NI Support #559
Conversation
|
Maybe some interesting insight. So i've used a temporary buffer now, and i'm writing 4x 32-Bit values now. It's decreasing the performance slightly, but ensures memory safety now. Speed is still fast enough, considering the excellt quality of the random numbers, passing all tests without fail. Before: void aes_ctr_prng_genrand_uint128_to_buf(aes_ctr_state_t* state, unsigned char* bufpos) {
int outlen;
EVP_EncryptUpdate(state->ctx, bufpos, &outlen, bufpos, 16);
// OpenSSL internally calls CRYPTO_ctr128_encrypt_ctr32
}After: /* Generates pseudorandom numbers and writes them to a buffer.
- state: Pointer to the initialized AES CTR PRNG state.
- bufpos: Target buffer where the pseudorandom numbers will be written. */
void aes_ctr_prng_genrand_uint128_to_buf( aes_ctr_state_t* state, unsigned char* bufpos )
{
unsigned char temp_buffer[16]; /* Intermediate buffer for 128 bits */
int outlen;
/* Generate pseudorandom numbers in the intermediate buffer */
EVP_EncryptUpdate( state->ctx, temp_buffer, &outlen, temp_buffer, sizeof( temp_buffer ) );
/* Write the data from the intermediate buffer to bufpos in four 32-bit steps.
This process is crucial to prevent a buffer overflow of bufpos, as it ensures
that exactly 16 bytes (128 bits) of pseudorandom data are safely transferred
into bufpos. Copying the data in controlled 32-bit segments allows for precise
management of the memory space allocated to bufpos, mitigating the risk of
writing beyond its allocated size. */
int i = 0;
while( i < 4 )
{
/* Copy each 32-bit segment from the intermediate buffer to the target buffer.
This step-by-step approach is essential for maintaining the integrity of
the buffer and ensuring that only the intended amount of data is written.
The ternary operator is used here for illustrative purposes and does not
alter the functionality. */
memcpy( bufpos + ( i * 4 ), temp_buffer + ( i * 4 ), 4 );
i = ( i < 4 ) ? i + 1 : 4; // Ternary operator to increment i or keep it at 4
}
}And it delivers incredible performance.
|
|
Did a 24 I've created another 'optional' commit. Setting AES-128 CTR as the default PRNG for 64-Bit CPUs, as most of the 64-Bit CPUs back to 2009 should massively benefit from it. Also it provides by far better PRNG quality than ISAAC and the others.
|
|
Looks good. I'm currently running a 18 drive test which should complete tomorrow afternoon. |
|
Bad news, speed is ok but I'm still seeing verification error on some drives but not all.
|
|
The logs, I don't see anything unusual, other than the verification errors. The count of "Initialising AES CTR PRNG" (36x) and "PRNG stream is active" (18x) are as would be expected for a 18 drive wipe. [2024/03/25 02:58:03] info: nwipe 0.36
[2024/03/25 02:58:03] info: Linux version 6.5.13-1-pve (build@proxmox) (gcc
(Debian 12.2.0-14) 12.2.0, GNU ld (GNU Binutils
for Debian) 2.40) #1 SMP PREEMPT_DYNAMIC PMX 6
.5.13-1 (2024-02-05T13:50Z)
[2024/03/25 02:58:03] warning: Device /dev/nvme0 not found
[2024/03/25 02:58:03] warning: Device /dev/nvme1 not found
[2024/03/25 02:58:03] notice: Found /dev/sdaa, USB , Seagate FreeAgent Go, 80 GB, S/N=XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:03] info: /dev/sdaa, sector(logical)/block(physical) sizes 512/512
[2024/03/25 02:58:03] info: HPA: max sectors = 156301488/156301488, hpa is disabled
on /dev/sdaa
[2024/03/25 02:58:03] info: HPA values 156301488 / 156301488 on /dev/sdaa
[2024/03/25 02:58:03] info: hdparm:DCO Real max sectors reported as 156301488 on /dev/sdaa
[2024/03/25 02:58:03] info: NWipe: DCO Real max sectors reported as 156301488 on /dev/sdaa
[2024/03/25 02:58:03] info: libata: apparent max sectors reported as 156301488 with sector size as 512/512 (logical/physical) on /dev/sdaa
[2024/03/25 02:58:03] info: No hidden sectors on /dev/sdaa
[2024/03/25 02:58:03] info: func:nwipe_read_dco_real_max_sectors(), DCO real max sectors = 156301488
[2024/03/25 02:58:03] info:
[2024/03/25 02:58:03] notice: Found /dev/sdab, USB-SSD, Samsung SSD 860 EVO 500G, 500 GB, S/N=XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:03] info: /dev/sdab, sector(logical)/block(physical) sizes 512/4096
[2024/03/25 02:58:03] error: SG_IO bad/missing sense data hdparm --verbose -N /dev/sdab 2>&1
[2024/03/25 02:58:03] warning: [UNKNOWN] We can't find the HPA line, has hdparm ouput unknown/changed? /dev/sdab
[2024/03/25 02:58:03] info: hdparm:DCO Real max sectors reported as 976773168 on /dev/sdab
[2024/03/25 02:58:03] info: NWipe: DCO Real max sectors reported as 976773168 on /dev/sdab
[2024/03/25 02:58:03] info: libata: apparent max sectors reported as 976773168 with sector size as 512/4096 (logical/physical) on /dev/sdab
[2024/03/25 02:58:03] info: No hidden sectors on /dev/sdab
[2024/03/25 02:58:03] info: func:nwipe_read_dco_real_max_sectors(), DCO real max sectors = 976773168
[2024/03/25 02:58:03] info:
[2024/03/25 02:58:03] warning: Device /dev/sdc not found
[2024/03/25 02:58:03] notice: Found /dev/sdd, ATA , ST1000NX0423, 1000 GB, S/N=XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:03] info: /dev/sdd, sector(logical)/block(physical) sizes 512/512
[2024/03/25 02:58:03] info: HPA: max sectors = 1953525168/1953525168, accessible max address disabled
on /dev/sdd
[2024/03/25 02:58:03] info: HPA values 1953525168 / 1953525168 on /dev/sdd
[2024/03/25 02:58:03] info: DCO Real max sectors not found
[2024/03/25 02:58:03] info: libata: apparent max sectors reported as 1953525168 with sector size as 512/512 (logical/physical) on /dev/sdd
[2024/03/25 02:58:03] info: No hidden sectors on /dev/sdd
[2024/03/25 02:58:03] info: func:nwipe_read_dco_real_max_sectors(), DCO real max sectors = 0
[2024/03/25 02:58:03] info:
[2024/03/25 02:58:03] notice: Found /dev/sde, ATA , ST1000NX0423, 1000 GB, S/N=XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:03] info: /dev/sde, sector(logical)/block(physical) sizes 512/512
[2024/03/25 02:58:03] info: HPA: max sectors = 1953525168/1953525168, accessible max address disabled
on /dev/sde
[2024/03/25 02:58:03] info: HPA values 1953525168 / 1953525168 on /dev/sde
[2024/03/25 02:58:03] info: DCO Real max sectors not found
[2024/03/25 02:58:03] info: libata: apparent max sectors reported as 1953525168 with sector size as 512/512 (logical/physical) on /dev/sde
[2024/03/25 02:58:03] info: No hidden sectors on /dev/sde
[2024/03/25 02:58:03] info: func:nwipe_read_dco_real_max_sectors(), DCO real max sectors = 0
[2024/03/25 02:58:03] info:
[2024/03/25 02:58:03] notice: Found /dev/sdf, ATA , ST1000NX0423, 1000 GB, S/N=XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:03] info: /dev/sdf, sector(logical)/block(physical) sizes 512/512
[2024/03/25 02:58:03] info: HPA: max sectors = 1953525168/1953525168, accessible max address disabled
on /dev/sdf
[2024/03/25 02:58:03] info: HPA values 1953525168 / 1953525168 on /dev/sdf
[2024/03/25 02:58:03] info: DCO Real max sectors not found
[2024/03/25 02:58:03] info: libata: apparent max sectors reported as 1953525168 with sector size as 512/512 (logical/physical) on /dev/sdf
[2024/03/25 02:58:03] info: No hidden sectors on /dev/sdf
[2024/03/25 02:58:03] info: func:nwipe_read_dco_real_max_sectors(), DCO real max sectors = 0
[2024/03/25 02:58:03] info:
[2024/03/25 02:58:03] notice: Found /dev/sdg, SAS , NETAPP X421_HCOBD450A10, 450 GB, S/N=XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:03] info: /dev/sdg, sector(logical)/block(physical) sizes 512/512
[2024/03/25 02:58:03] error: SG_IO bad/missing sense data hdparm --verbose -N /dev/sdg 2>&1
[2024/03/25 02:58:03] warning: [UNKNOWN] We can't find the HPA line, has hdparm ouput unknown/changed? /dev/sdg
[2024/03/25 02:58:03] info: DCO Real max sectors not found
[2024/03/25 02:58:03] info: libata: apparent max sectors reported as 879097968 with sector size as 512/512 (logical/physical) on /dev/sdg
[2024/03/25 02:58:03] info: func:nwipe_read_dco_real_max_sectors(), DCO real max sectors = 0
[2024/03/25 02:58:03] info:
[2024/03/25 02:58:03] notice: Found /dev/sdh, ATA-SSD, SanDisk SSD PLUS, 240 GB, S/N=XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:03] info: /dev/sdh, sector(logical)/block(physical) sizes 512/512
[2024/03/25 02:58:03] info: HPA: max sectors = 468862128/468862129, accessible max address enabled
on /dev/sdh
[2024/03/25 02:58:03] info: HPA values 468862128 / 468862129 on /dev/sdh
[2024/03/25 02:58:03] info: hdparm:DCO Real max sectors reported as 468862128 on /dev/sdh
[2024/03/25 02:58:03] info: NWipe: DCO Real max sectors reported as 468862128 on /dev/sdh
[2024/03/25 02:58:03] info: libata: apparent max sectors reported as 468862128 with sector size as 512/512 (logical/physical) on /dev/sdh
[2024/03/25 02:58:03] warning: *********************************
[2024/03/25 02:58:03] warning: *** HIDDEN SECTORS DETECTED ! *** on /dev/sdh
[2024/03/25 02:58:03] warning: *********************************
[2024/03/25 02:58:03] info: func:nwipe_read_dco_real_max_sectors(), DCO real max sectors = 468862128
[2024/03/25 02:58:03] info:
[2024/03/25 02:58:03] notice: Found /dev/sdi, ATA-SSD, CT500MX500SSD1, 500 GB, S/N=XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:03] info: /dev/sdi, sector(logical)/block(physical) sizes 512/4096
[2024/03/25 02:58:03] info: HPA: max sectors = 976773168/976773168, accessible max address disabled
on /dev/sdi
[2024/03/25 02:58:03] info: HPA values 976773168 / 976773168 on /dev/sdi
[2024/03/25 02:58:03] info: DCO Real max sectors not found
[2024/03/25 02:58:03] info: libata: apparent max sectors reported as 976773168 with sector size as 512/4096 (logical/physical) on /dev/sdi
[2024/03/25 02:58:03] info: No hidden sectors on /dev/sdi
[2024/03/25 02:58:03] info: func:nwipe_read_dco_real_max_sectors(), DCO real max sectors = 0
[2024/03/25 02:58:03] info:
[2024/03/25 02:58:03] notice: Found /dev/sdj, ATA-SSD, OCZ-TRION100, 240 GB, S/N=XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:03] info: /dev/sdj, sector(logical)/block(physical) sizes 512/512
[2024/03/25 02:58:04] info: HPA: max sectors = 468862128/468862128, hpa is disabled
on /dev/sdj
[2024/03/25 02:58:04] info: HPA values 468862128 / 468862128 on /dev/sdj
[2024/03/25 02:58:04] info: DCO Real max sectors not found
[2024/03/25 02:58:04] info: libata: apparent max sectors reported as 468862128 with sector size as 512/512 (logical/physical) on /dev/sdj
[2024/03/25 02:58:04] info: No hidden sectors on /dev/sdj
[2024/03/25 02:58:04] info: func:nwipe_read_dco_real_max_sectors(), DCO real max sectors = 0
[2024/03/25 02:58:04] info:
[2024/03/25 02:58:04] notice: Found /dev/sdk, SAS , SEAGATE ST1200MM0088, 1200 GB, S/N=XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:04] info: /dev/sdk, sector(logical)/block(physical) sizes 512/512
[2024/03/25 02:58:04] error: SG_IO bad/missing sense data hdparm --verbose -N /dev/sdk 2>&1
[2024/03/25 02:58:04] warning: [UNKNOWN] We can't find the HPA line, has hdparm ouput unknown/changed? /dev/sdk
[2024/03/25 02:58:04] info: hdparm:DCO Real max sectors reported as 1 on /dev/sdk
[2024/03/25 02:58:04] info: NWipe: DCO Real max sectors reported as 1 on /dev/sdk
[2024/03/25 02:58:04] info: libata: apparent max sectors reported as 2344225968 with sector size as 512/512 (logical/physical) on /dev/sdk
[2024/03/25 02:58:04] info: func:nwipe_read_dco_real_max_sectors(), DCO real max sectors = 0
[2024/03/25 02:58:04] info:
[2024/03/25 02:58:04] notice: Found /dev/sdl, ATA , ST1000NX0423, 1000 GB, S/N=XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:04] info: /dev/sdl, sector(logical)/block(physical) sizes 512/512
[2024/03/25 02:58:04] info: HPA: max sectors = 1953525168/1953525168, accessible max address disabled
on /dev/sdl
[2024/03/25 02:58:04] info: HPA values 1953525168 / 1953525168 on /dev/sdl
[2024/03/25 02:58:04] info: DCO Real max sectors not found
[2024/03/25 02:58:04] info: libata: apparent max sectors reported as 1953525168 with sector size as 512/512 (logical/physical) on /dev/sdl
[2024/03/25 02:58:04] info: No hidden sectors on /dev/sdl
[2024/03/25 02:58:04] info: func:nwipe_read_dco_real_max_sectors(), DCO real max sectors = 0
[2024/03/25 02:58:04] info:
[2024/03/25 02:58:04] notice: Found /dev/sdm, SAS , TOSHIBA AL14SEB120N, 1200 GB, S/N=XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:04] info: /dev/sdm, sector(logical)/block(physical) sizes 512/512
[2024/03/25 02:58:04] error: SG_IO bad/missing sense data hdparm --verbose -N /dev/sdm 2>&1
[2024/03/25 02:58:04] warning: [UNKNOWN] We can't find the HPA line, has hdparm ouput unknown/changed? /dev/sdm
[2024/03/25 02:58:04] info: hdparm:DCO Real max sectors reported as 1 on /dev/sdm
[2024/03/25 02:58:04] info: NWipe: DCO Real max sectors reported as 1 on /dev/sdm
[2024/03/25 02:58:04] info: libata: apparent max sectors reported as 2344225968 with sector size as 512/512 (logical/physical) on /dev/sdm
[2024/03/25 02:58:04] info: func:nwipe_read_dco_real_max_sectors(), DCO real max sectors = 0
[2024/03/25 02:58:04] info:
[2024/03/25 02:58:04] notice: Found /dev/sdn, SAS , SEAGATE ST1200MM0088, 1200 GB, S/N=XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:04] info: /dev/sdn, sector(logical)/block(physical) sizes 512/512
[2024/03/25 02:58:04] error: SG_IO bad/missing sense data hdparm --verbose -N /dev/sdn 2>&1
[2024/03/25 02:58:04] warning: [UNKNOWN] We can't find the HPA line, has hdparm ouput unknown/changed? /dev/sdn
[2024/03/25 02:58:04] info: hdparm:DCO Real max sectors reported as 1 on /dev/sdn
[2024/03/25 02:58:04] info: NWipe: DCO Real max sectors reported as 1 on /dev/sdn
[2024/03/25 02:58:04] info: libata: apparent max sectors reported as 2344225968 with sector size as 512/512 (logical/physical) on /dev/sdn
[2024/03/25 02:58:04] info: func:nwipe_read_dco_real_max_sectors(), DCO real max sectors = 0
[2024/03/25 02:58:04] info:
[2024/03/25 02:58:04] notice: Found /dev/sdo, ATA-SSD, Corsair Force LS, 60 GB, S/N=XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:04] info: /dev/sdo, sector(logical)/block(physical) sizes 512/512
[2024/03/25 02:58:04] info: HPA: max sectors = 117231408/117231408, hpa is disabled
on /dev/sdo
[2024/03/25 02:58:04] info: HPA values 117231408 / 117231408 on /dev/sdo
[2024/03/25 02:58:04] info: hdparm:DCO Real max sectors reported as 117231408 on /dev/sdo
[2024/03/25 02:58:04] info: NWipe: DCO Real max sectors reported as 117231408 on /dev/sdo
[2024/03/25 02:58:04] info: libata: apparent max sectors reported as 117231408 with sector size as 512/512 (logical/physical) on /dev/sdo
[2024/03/25 02:58:04] info: No hidden sectors on /dev/sdo
[2024/03/25 02:58:04] info: func:nwipe_read_dco_real_max_sectors(), DCO real max sectors = 117231408
[2024/03/25 02:58:04] info:
[2024/03/25 02:58:04] notice: Found /dev/sdp, ATA-SSD, SanDisk SSD PLUS, 240 GB, S/N=XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:04] info: /dev/sdp, sector(logical)/block(physical) sizes 512/512
[2024/03/25 02:58:04] info: HPA: max sectors = 468862128/468862129, accessible max address enabled
on /dev/sdp
[2024/03/25 02:58:04] info: HPA values 468862128 / 468862129 on /dev/sdp
[2024/03/25 02:58:04] info: hdparm:DCO Real max sectors reported as 468862128 on /dev/sdp
[2024/03/25 02:58:04] info: NWipe: DCO Real max sectors reported as 468862128 on /dev/sdp
[2024/03/25 02:58:04] info: libata: apparent max sectors reported as 468862128 with sector size as 512/512 (logical/physical) on /dev/sdp
[2024/03/25 02:58:04] warning: *********************************
[2024/03/25 02:58:04] warning: *** HIDDEN SECTORS DETECTED ! *** on /dev/sdp
[2024/03/25 02:58:04] warning: *********************************
[2024/03/25 02:58:04] info: func:nwipe_read_dco_real_max_sectors(), DCO real max sectors = 468862128
[2024/03/25 02:58:04] info:
[2024/03/25 02:58:04] notice: Found /dev/sdq, SAS-SSD, STEC Z16IZF2D-200UCT, 200 GB, S/N=XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:04] info: /dev/sdq, sector(logical)/block(physical) sizes 512/512
[2024/03/25 02:58:04] error: SG_IO bad/missing sense data hdparm --verbose -N /dev/sdq 2>&1
[2024/03/25 02:58:04] warning: [UNKNOWN] We can't find the HPA line, has hdparm ouput unknown/changed? /dev/sdq
[2024/03/25 02:58:04] info: hdparm:DCO Real max sectors reported as 1 on /dev/sdq
[2024/03/25 02:58:04] info: NWipe: DCO Real max sectors reported as 1 on /dev/sdq
[2024/03/25 02:58:04] info: libata: apparent max sectors reported as 390721968 with sector size as 512/512 (logical/physical) on /dev/sdq
[2024/03/25 02:58:04] info: func:nwipe_read_dco_real_max_sectors(), DCO real max sectors = 0
[2024/03/25 02:58:04] info:
[2024/03/25 02:58:04] notice: Found /dev/sdr, SAS-SSD, STEC SDT5C-S200SS, 200 GB, S/N=XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:04] info: /dev/sdr, sector(logical)/block(physical) sizes 512/512
[2024/03/25 02:58:04] error: SG_IO bad/missing sense data hdparm --verbose -N /dev/sdr 2>&1
[2024/03/25 02:58:04] warning: [UNKNOWN] We can't find the HPA line, has hdparm ouput unknown/changed? /dev/sdr
[2024/03/25 02:58:04] info: hdparm:DCO Real max sectors reported as 1 on /dev/sdr
[2024/03/25 02:58:04] info: NWipe: DCO Real max sectors reported as 1 on /dev/sdr
[2024/03/25 02:58:04] info: libata: apparent max sectors reported as 390721968 with sector size as 512/512 (logical/physical) on /dev/sdr
[2024/03/25 02:58:04] info: func:nwipe_read_dco_real_max_sectors(), DCO real max sectors = 0
[2024/03/25 02:58:04] info:
[2024/03/25 02:58:04] warning: Device /dev/sds not found
[2024/03/25 02:58:04] notice: Found /dev/sdt, SAS , SEAGATE ST1200MM0088, 1200 GB, S/N=XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:04] info: /dev/sdt, sector(logical)/block(physical) sizes 512/512
[2024/03/25 02:58:04] error: SG_IO bad/missing sense data hdparm --verbose -N /dev/sdt 2>&1
[2024/03/25 02:58:04] warning: [UNKNOWN] We can't find the HPA line, has hdparm ouput unknown/changed? /dev/sdt
[2024/03/25 02:58:04] info: hdparm:DCO Real max sectors reported as 1 on /dev/sdt
[2024/03/25 02:58:04] info: NWipe: DCO Real max sectors reported as 1 on /dev/sdt
[2024/03/25 02:58:04] info: libata: apparent max sectors reported as 2344225968 with sector size as 512/512 (logical/physical) on /dev/sdt
[2024/03/25 02:58:04] info: func:nwipe_read_dco_real_max_sectors(), DCO real max sectors = 0
[2024/03/25 02:58:04] info:
[2024/03/25 02:58:04] notice: Found /dev/sdu, SAS , HP MM1000FBFVR, 1000 GB, S/N=XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:04] info: /dev/sdu, sector(logical)/block(physical) sizes 512/512
[2024/03/25 02:58:04] error: SG_IO bad/missing sense data hdparm --verbose -N /dev/sdu 2>&1
[2024/03/25 02:58:04] warning: [UNKNOWN] We can't find the HPA line, has hdparm ouput unknown/changed? /dev/sdu
[2024/03/25 02:58:04] info: hdparm:DCO Real max sectors reported as 1 on /dev/sdu
[2024/03/25 02:58:04] info: NWipe: DCO Real max sectors reported as 1 on /dev/sdu
[2024/03/25 02:58:04] info: libata: apparent max sectors reported as 1953525168 with sector size as 512/512 (logical/physical) on /dev/sdu
[2024/03/25 02:58:04] info: func:nwipe_read_dco_real_max_sectors(), DCO real max sectors = 0
[2024/03/25 02:58:04] info:
[2024/03/25 02:58:04] notice: Found /dev/sdv, SAS , HP MM1000FBFVR, 1000 GB, S/N=XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:04] info: /dev/sdv, sector(logical)/block(physical) sizes 512/512
[2024/03/25 02:58:04] error: SG_IO bad/missing sense data hdparm --verbose -N /dev/sdv 2>&1
[2024/03/25 02:58:04] warning: [UNKNOWN] We can't find the HPA line, has hdparm ouput unknown/changed? /dev/sdv
[2024/03/25 02:58:04] info: hdparm:DCO Real max sectors reported as 1 on /dev/sdv
[2024/03/25 02:58:04] info: NWipe: DCO Real max sectors reported as 1 on /dev/sdv
[2024/03/25 02:58:04] info: libata: apparent max sectors reported as 1953525168 with sector size as 512/512 (logical/physical) on /dev/sdv
[2024/03/25 02:58:04] info: func:nwipe_read_dco_real_max_sectors(), DCO real max sectors = 0
[2024/03/25 02:58:04] info:
[2024/03/25 02:58:04] notice: Found /dev/sdw, SAS , HP MM1000FBFVR, 1000 GB, S/N=XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:04] info: /dev/sdw, sector(logical)/block(physical) sizes 512/512
[2024/03/25 02:58:04] error: SG_IO bad/missing sense data hdparm --verbose -N /dev/sdw 2>&1
[2024/03/25 02:58:04] warning: [UNKNOWN] We can't find the HPA line, has hdparm ouput unknown/changed? /dev/sdw
[2024/03/25 02:58:04] info: hdparm:DCO Real max sectors reported as 1 on /dev/sdw
[2024/03/25 02:58:04] info: NWipe: DCO Real max sectors reported as 1 on /dev/sdw
[2024/03/25 02:58:04] info: libata: apparent max sectors reported as 1953525168 with sector size as 512/512 (logical/physical) on /dev/sdw
[2024/03/25 02:58:04] info: func:nwipe_read_dco_real_max_sectors(), DCO real max sectors = 0
[2024/03/25 02:58:04] info:
[2024/03/25 02:58:04] warning: Device /dev/sdx not found
[2024/03/25 02:58:04] warning: Device /dev/sdy not found
[2024/03/25 02:58:04] notice: Found /dev/sdz, SAS , HP MM1000FBFVR, 1000 GB, S/N=XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:04] info: /dev/sdz, sector(logical)/block(physical) sizes 512/512
[2024/03/25 02:58:04] error: SG_IO bad/missing sense data hdparm --verbose -N /dev/sdz 2>&1
[2024/03/25 02:58:04] warning: [UNKNOWN] We can't find the HPA line, has hdparm ouput unknown/changed? /dev/sdz
[2024/03/25 02:58:04] info: hdparm:DCO Real max sectors reported as 1 on /dev/sdz
[2024/03/25 02:58:04] info: NWipe: DCO Real max sectors reported as 1 on /dev/sdz
[2024/03/25 02:58:04] info: libata: apparent max sectors reported as 1953525168 with sector size as 512/512 (logical/physical) on /dev/sdz
[2024/03/25 02:58:04] info: func:nwipe_read_dco_real_max_sectors(), DCO real max sectors = 0
[2024/03/25 02:58:04] info:
[2024/03/25 02:58:04] info: bios-version = 2.9.0
[2024/03/25 02:58:05] info: bios-release-date = 12/06/2019
[2024/03/25 02:58:05] info: system-manufacturer = Dell Inc.
[2024/03/25 02:58:05] info: system-product-name = PowerEdge R720xd
[2024/03/25 02:58:05] info: system-version = Not Specified
[2024/03/25 02:58:05] info: system-serial-number = XXXXXXXXXXXXXXX
[2024/03/25 02:58:05] info: system-uuid = XXXXXXXXXXXXXXX
[2024/03/25 02:58:05] info: baseboard-manufacturer = Dell Inc.
[2024/03/25 02:58:05] info: baseboard-product-name = 0020HJ
[2024/03/25 02:58:05] info: baseboard-version = A01
[2024/03/25 02:58:05] info: baseboard-serial-number = XXXXXXXXXXXXXXX
[2024/03/25 02:58:05] info: baseboard-asset-tag = XXXXXXXXXXXXXXX
[2024/03/25 02:58:05] info: chassis-manufacturer = Dell Inc.
[2024/03/25 02:58:05] info: chassis-type = Rack Mount Chassis
[2024/03/25 02:58:05] info: chassis-version = Not Specified
[2024/03/25 02:58:05] info: chassis-serial-number = XXXXXXXXXXXXXXX
[2024/03/25 02:58:05] info: chassis-asset-tag = XXXXXXXXXXXXXXX
[2024/03/25 02:58:05] info: processor-family = Xeon
[2024/03/25 02:58:05] info: processor-family = Xeon
[2024/03/25 02:58:05] info: processor-manufacturer = Intel
[2024/03/25 02:58:05] info: processor-manufacturer = Intel
[2024/03/25 02:58:05] info: processor-version = Intel(R) Xeon(R) CPU E5-2680 v2 @ 2.80GHz
[2024/03/25 02:58:05] info: processor-version = Intel(R) Xeon(R) CPU E5-2680 v2 @ 2.80GHz
[2024/03/25 02:58:05] info: processor-frequency = 2800 MHz
[2024/03/25 02:58:05] info: processor-frequency = 2800 MHz
[2024/03/25 02:58:05] notice: Opened entropy source '/dev/urandom'.
[2024/03/25 02:58:05] notice: hwmon: Module drivetemp loaded, drive temperatures available
[2024/03/25 02:58:05] notice: hwmon: sdd has temperature monitoring
[2024/03/25 02:58:05] info: Temperature limits for /dev/sdd, critical=N/A, max=N/A, highest=N/A, lowest=N/A, min=N/A, low critical=N/A.
[2024/03/25 02:58:05] notice: hwmon: sde has temperature monitoring
[2024/03/25 02:58:05] info: Temperature limits for /dev/sde, critical=N/A, max=N/A, highest=N/A, lowest=N/A, min=N/A, low critical=N/A.
[2024/03/25 02:58:05] notice: hwmon: sdf has temperature monitoring
[2024/03/25 02:58:05] info: Temperature limits for /dev/sdf, critical=N/A, max=N/A, highest=N/A, lowest=N/A, min=N/A, low critical=N/A.
[2024/03/25 02:58:05] notice: no hwmon data for /dev/sdg, try to get SCSI data
[2024/03/25 02:58:05] info: got SCSI temperature data for /dev/sdg
[2024/03/25 02:58:05] info: Temperature limits for /dev/sdg, critical=85c, max=80c, highest=30c, lowest=30c, min=N/A, low critical=-40c.
[2024/03/25 02:58:05] notice: hwmon: sdh has temperature monitoring
[2024/03/25 02:58:05] info: Temperature limits for /dev/sdh, critical=N/A, max=N/A, highest=N/A, lowest=N/A, min=N/A, low critical=N/A.
[2024/03/25 02:58:05] notice: hwmon: sdi has temperature monitoring
[2024/03/25 02:58:05] info: Temperature limits for /dev/sdi, critical=N/A, max=N/A, highest=N/A, lowest=N/A, min=N/A, low critical=N/A.
[2024/03/25 02:58:05] notice: hwmon: sdj has temperature monitoring
[2024/03/25 02:58:05] info: Temperature limits for /dev/sdj, critical=N/A, max=N/A, highest=N/A, lowest=N/A, min=N/A, low critical=N/A.
[2024/03/25 02:58:05] notice: no hwmon data for /dev/sdk, try to get SCSI data
[2024/03/25 02:58:05] info: got SCSI temperature data for /dev/sdk
[2024/03/25 02:58:05] info: Temperature limits for /dev/sdk, critical=60c, max=55c, highest=34c, lowest=34c, min=N/A, low critical=-40c.
[2024/03/25 02:58:05] notice: hwmon: sdl has temperature monitoring
[2024/03/25 02:58:05] info: Temperature limits for /dev/sdl, critical=N/A, max=N/A, highest=N/A, lowest=N/A, min=N/A, low critical=N/A.
[2024/03/25 02:58:05] notice: no hwmon data for /dev/sdm, try to get SCSI data
[2024/03/25 02:58:05] info: got SCSI temperature data for /dev/sdm
[2024/03/25 02:58:05] info: Temperature limits for /dev/sdm, critical=65c, max=60c, highest=32c, lowest=32c, min=N/A, low critical=-40c.
[2024/03/25 02:58:05] notice: no hwmon data for /dev/sdn, try to get SCSI data
[2024/03/25 02:58:05] info: got SCSI temperature data for /dev/sdn
[2024/03/25 02:58:05] info: Temperature limits for /dev/sdn, critical=60c, max=55c, highest=32c, lowest=32c, min=N/A, low critical=-40c.
[2024/03/25 02:58:05] notice: hwmon: sdo has temperature monitoring
[2024/03/25 02:58:05] info: Temperature limits for /dev/sdo, critical=N/A, max=N/A, highest=N/A, lowest=N/A, min=N/A, low critical=N/A.
[2024/03/25 02:58:05] notice: hwmon: sdp has temperature monitoring
[2024/03/25 02:58:05] info: Temperature limits for /dev/sdp, critical=N/A, max=N/A, highest=N/A, lowest=N/A, min=N/A, low critical=N/A.
[2024/03/25 02:58:05] notice: no hwmon data for /dev/sdq, try to get SCSI data
[2024/03/25 02:58:05] info: got SCSI temperature data for /dev/sdq
[2024/03/25 02:58:05] info: Temperature limits for /dev/sdq, critical=75c, max=70c, highest=50c, lowest=50c, min=N/A, low critical=-40c.
[2024/03/25 02:58:05] notice: no hwmon data for /dev/sdr, try to get SCSI data
[2024/03/25 02:58:05] info: got SCSI temperature data for /dev/sdr
[2024/03/25 02:58:05] info: Temperature limits for /dev/sdr, critical=80c, max=75c, highest=56c, lowest=56c, min=N/A, low critical=-40c.
[2024/03/25 02:58:05] notice: no hwmon data for /dev/sdt, try to get SCSI data
[2024/03/25 02:58:05] info: got SCSI temperature data for /dev/sdt
[2024/03/25 02:58:05] info: Temperature limits for /dev/sdt, critical=60c, max=55c, highest=34c, lowest=34c, min=N/A, low critical=-40c.
[2024/03/25 02:58:05] notice: no hwmon data for /dev/sdu, try to get SCSI data
[2024/03/25 02:58:05] info: got SCSI temperature data for /dev/sdu
[2024/03/25 02:58:05] info: Temperature limits for /dev/sdu, critical=65c, max=60c, highest=31c, lowest=31c, min=N/A, low critical=-40c.
[2024/03/25 02:58:05] notice: no hwmon data for /dev/sdv, try to get SCSI data
[2024/03/25 02:58:05] info: got SCSI temperature data for /dev/sdv
[2024/03/25 02:58:05] info: Temperature limits for /dev/sdv, critical=65c, max=60c, highest=31c, lowest=31c, min=N/A, low critical=-40c.
[2024/03/25 02:58:05] notice: no hwmon data for /dev/sdw, try to get SCSI data
[2024/03/25 02:58:05] info: got SCSI temperature data for /dev/sdw
[2024/03/25 02:58:05] info: Temperature limits for /dev/sdw, critical=65c, max=60c, highest=32c, lowest=32c, min=N/A, low critical=-40c.
[2024/03/25 02:58:05] notice: no hwmon data for /dev/sdz, try to get SCSI data
[2024/03/25 02:58:06] info: got SCSI temperature data for /dev/sdz
[2024/03/25 02:58:06] info: Temperature limits for /dev/sdz, critical=65c, max=60c, highest=32c, lowest=32c, min=N/A, low critical=-40c.
[2024/03/25 02:58:06] info: Temperature limits for /dev/sdaa, critical=N/A, max=N/A, highest=N/A, lowest=N/A, min=N/A, low critical=N/A.
[2024/03/25 02:58:06] info: Temperature limits for /dev/sdab, critical=N/A, max=N/A, highest=N/A, lowest=N/A, min=N/A, low critical=N/A.
[2024/03/25 02:58:32] notice: Program options are set as follows...
[2024/03/25 02:58:32] notice: autonuke = 0 (off)
[2024/03/25 02:58:32] notice: autopoweroff = 0 (off)
[2024/03/25 02:58:32] notice: do not perform a final blank pass
[2024/03/25 02:58:32] notice: banner = nwipe 0.36
[2024/03/25 02:58:32] notice: prng = AES-CTR New Instructions (EXPERIMENTAL!)
[2024/03/25 02:58:32] notice: method = PRNG Stream
[2024/03/25 02:58:32] notice: quiet = 1
[2024/03/25 02:58:32] notice: rounds = 1
[2024/03/25 02:58:32] notice: sync = 100000
[2024/03/25 02:58:32] notice: verify = 2 (all passes)
[2024/03/25 02:58:32] notice: /dev/sdd has serial number XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:32] notice: /dev/sdd, sect/blk/dev 512/4096/1000204886016
[2024/03/25 02:58:32] notice: /dev/sde has serial number XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:32] notice: /dev/sde, sect/blk/dev 512/4096/1000204886016
[2024/03/25 02:58:32] notice: Invoking method 'PRNG Stream' on /dev/sdd
[2024/03/25 02:58:32] notice: Starting round 1 of 1 on /dev/sdd
[2024/03/25 02:58:32] notice: Starting pass 1/1, round 1/1, on /dev/sdd
[2024/03/25 02:58:32] notice: Invoking method 'PRNG Stream' on /dev/sde
[2024/03/25 02:58:32] notice: Starting round 1 of 1 on /dev/sde
[2024/03/25 02:58:32] notice: Starting pass 1/1, round 1/1, on /dev/sde
[2024/03/25 02:58:32] notice: /dev/sdf has serial number XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:32] notice: /dev/sdf, sect/blk/dev 512/4096/1000204886016
[2024/03/25 02:58:32] notice: Initialising AES CTR PRNG
[2024/03/25 02:58:32] notice: /dev/sdh has serial number XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:32] notice: Initialising AES CTR PRNG
[2024/03/25 02:58:32] notice: /dev/sdh, sect/blk/dev 512/4096/240057409536
[2024/03/25 02:58:32] notice: Invoking method 'PRNG Stream' on /dev/sdf
[2024/03/25 02:58:32] notice: Starting round 1 of 1 on /dev/sdf
[2024/03/25 02:58:32] notice: Starting pass 1/1, round 1/1, on /dev/sdf
[2024/03/25 02:58:32] notice: Initialising AES CTR PRNG
[2024/03/25 02:58:32] notice: /dev/sdi has serial number XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:32] notice: /dev/sdi, sect/blk/dev 512/4096/500107862016
[2024/03/25 02:58:32] notice: Invoking method 'PRNG Stream' on /dev/sdh
[2024/03/25 02:58:32] notice: Starting round 1 of 1 on /dev/sdh
[2024/03/25 02:58:32] notice: Starting pass 1/1, round 1/1, on /dev/sdh
[2024/03/25 02:58:32] notice: Initialising AES CTR PRNG
[2024/03/25 02:58:32] notice: /dev/sdj has serial number XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:32] notice: /dev/sdj, sect/blk/dev 512/4096/240057409536
[2024/03/25 02:58:32] notice: Invoking method 'PRNG Stream' on /dev/sdi
[2024/03/25 02:58:32] notice: Starting round 1 of 1 on /dev/sdi
[2024/03/25 02:58:32] notice: Starting pass 1/1, round 1/1, on /dev/sdi
[2024/03/25 02:58:32] notice: Initialising AES CTR PRNG
[2024/03/25 02:58:32] notice: /dev/sdk has serial number XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:32] notice: /dev/sdk, sect/blk/dev 512/4096/1200243695616
[2024/03/25 02:58:32] notice: Invoking method 'PRNG Stream' on /dev/sdj
[2024/03/25 02:58:32] notice: Starting round 1 of 1 on /dev/sdj
[2024/03/25 02:58:32] notice: Starting pass 1/1, round 1/1, on /dev/sdj
[2024/03/25 02:58:32] notice: Initialising AES CTR PRNG
[2024/03/25 02:58:32] notice: /dev/sdl has serial number XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:32] notice: /dev/sdl, sect/blk/dev 512/4096/1000204886016
[2024/03/25 02:58:32] notice: Invoking method 'PRNG Stream' on /dev/sdk
[2024/03/25 02:58:32] notice: Starting round 1 of 1 on /dev/sdk
[2024/03/25 02:58:32] notice: Starting pass 1/1, round 1/1, on /dev/sdk
[2024/03/25 02:58:32] notice: Initialising AES CTR PRNG
[2024/03/25 02:58:32] notice: /dev/sdo has serial number XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:32] notice: /dev/sdo, sect/blk/dev 512/4096/60022480896
[2024/03/25 02:58:32] notice: Invoking method 'PRNG Stream' on /dev/sdl
[2024/03/25 02:58:32] notice: Starting round 1 of 1 on /dev/sdl
[2024/03/25 02:58:32] notice: Starting pass 1/1, round 1/1, on /dev/sdl
[2024/03/25 02:58:32] notice: Invoking method 'PRNG Stream' on /dev/sdo
[2024/03/25 02:58:32] notice: Starting round 1 of 1 on /dev/sdo
[2024/03/25 02:58:32] notice: Starting pass 1/1, round 1/1, on /dev/sdo
[2024/03/25 02:58:32] notice: /dev/sdp has serial number XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:32] notice: /dev/sdp, sect/blk/dev 512/4096/240057409536
[2024/03/25 02:58:32] notice: Initialising AES CTR PRNG
[2024/03/25 02:58:32] notice: Initialising AES CTR PRNG
[2024/03/25 02:58:32] notice: /dev/sdr has serial number XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:32] notice: /dev/sdr, sect/blk/dev 512/4096/200049647616
[2024/03/25 02:58:32] notice: Invoking method 'PRNG Stream' on /dev/sdp
[2024/03/25 02:58:32] notice: Starting round 1 of 1 on /dev/sdp
[2024/03/25 02:58:32] notice: Starting pass 1/1, round 1/1, on /dev/sdp
[2024/03/25 02:58:32] notice: Invoking method 'PRNG Stream' on /dev/sdr
[2024/03/25 02:58:32] notice: Starting round 1 of 1 on /dev/sdr
[2024/03/25 02:58:32] notice: Starting pass 1/1, round 1/1, on /dev/sdr
[2024/03/25 02:58:32] notice: /dev/sdt has serial number XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:32] notice: Initialising AES CTR PRNG
[2024/03/25 02:58:32] notice: Initialising AES CTR PRNG
[2024/03/25 02:58:32] notice: /dev/sdt, sect/blk/dev 512/4096/1200243695616
[2024/03/25 02:58:32] notice: /dev/sdu has serial number XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:32] notice: /dev/sdu, sect/blk/dev 512/4096/1000204886016
[2024/03/25 02:58:32] notice: Invoking method 'PRNG Stream' on /dev/sdt
[2024/03/25 02:58:32] notice: Starting round 1 of 1 on /dev/sdt
[2024/03/25 02:58:32] notice: Starting pass 1/1, round 1/1, on /dev/sdt
[2024/03/25 02:58:32] notice: /dev/sdv has serial number XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:32] notice: /dev/sdv, sect/blk/dev 512/4096/1000204886016
[2024/03/25 02:58:32] notice: Initialising AES CTR PRNG
[2024/03/25 02:58:32] notice: Invoking method 'PRNG Stream' on /dev/sdu
[2024/03/25 02:58:32] notice: Starting round 1 of 1 on /dev/sdu
[2024/03/25 02:58:32] notice: Starting pass 1/1, round 1/1, on /dev/sdu
[2024/03/25 02:58:32] notice: /dev/sdw has serial number XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:32] notice: Invoking method 'PRNG Stream' on /dev/sdv
[2024/03/25 02:58:32] notice: Starting round 1 of 1 on /dev/sdv
[2024/03/25 02:58:32] notice: Starting pass 1/1, round 1/1, on /dev/sdv
[2024/03/25 02:58:32] notice: Initialising AES CTR PRNG
[2024/03/25 02:58:32] notice: /dev/sdw, sect/blk/dev 512/4096/1000204886016
[2024/03/25 02:58:32] notice: Initialising AES CTR PRNG
[2024/03/25 02:58:32] notice: /dev/sdz has serial number XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:32] notice: /dev/sdz, sect/blk/dev 512/4096/1000204886016
[2024/03/25 02:58:32] notice: Invoking method 'PRNG Stream' on /dev/sdw
[2024/03/25 02:58:32] notice: Starting round 1 of 1 on /dev/sdw
[2024/03/25 02:58:32] notice: Starting pass 1/1, round 1/1, on /dev/sdw
[2024/03/25 02:58:32] notice: Invoking method 'PRNG Stream' on /dev/sdz
[2024/03/25 02:58:32] notice: Starting round 1 of 1 on /dev/sdz
[2024/03/25 02:58:32] notice: Starting pass 1/1, round 1/1, on /dev/sdz
[2024/03/25 02:58:32] notice: Initialising AES CTR PRNG
[2024/03/25 02:58:32] notice: Initialising AES CTR PRNG
[2024/03/25 02:58:32] notice: /dev/sdaa has serial number XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:32] notice: /dev/sdaa, sect/blk/dev 512/4096/80026361856
[2024/03/25 02:58:32] notice: /dev/sdab has serial number XXXXXXXXXXXXXXXXXXXX
[2024/03/25 02:58:32] notice: /dev/sdab, sect/blk/dev 512/4096/500107862016
[2024/03/25 02:58:32] notice: Invoking method 'PRNG Stream' on /dev/sdaa
[2024/03/25 02:58:32] notice: Starting round 1 of 1 on /dev/sdaa
[2024/03/25 02:58:32] notice: Starting pass 1/1, round 1/1, on /dev/sdaa
[2024/03/25 02:58:32] notice: Invoking method 'PRNG Stream' on /dev/sdab
[2024/03/25 02:58:32] notice: Starting round 1 of 1 on /dev/sdab
[2024/03/25 02:58:32] notice: Starting pass 1/1, round 1/1, on /dev/sdab
[2024/03/25 02:58:32] notice: Initialising AES CTR PRNG
[2024/03/25 02:58:32] notice: Initialising AES CTR PRNG
[2024/03/25 02:58:32] notice: prng stream is active
[2024/03/25 02:58:32] notice: prng stream is active
[2024/03/25 02:58:32] notice: prng stream is active
[2024/03/25 02:58:32] notice: prng stream is active
[2024/03/25 02:58:32] notice: prng stream is active
[2024/03/25 02:58:32] notice: prng stream is active
[2024/03/25 02:58:32] notice: prng stream is active
[2024/03/25 02:58:32] notice: prng stream is active
[2024/03/25 02:58:32] notice: prng stream is active
[2024/03/25 02:58:32] notice: prng stream is active
[2024/03/25 02:58:32] notice: prng stream is active
[2024/03/25 02:58:32] notice: prng stream is active
[2024/03/25 02:58:32] notice: prng stream is active
[2024/03/25 02:58:32] notice: prng stream is active
[2024/03/25 02:58:32] notice: prng stream is active
[2024/03/25 02:58:32] notice: prng stream is active
[2024/03/25 02:58:32] notice: prng stream is active
[2024/03/25 02:58:32] notice: prng stream is active
[2024/03/25 03:07:24] notice: 60022480896 bytes written to /dev/sdo
[2024/03/25 03:07:24] notice: Verifying pass 1 of 1, round 1 of 1, on /dev/sdo
[2024/03/25 03:07:24] notice: Initialising AES CTR PRNG
[2024/03/25 03:11:26] notice: 60022480896 bytes read from /dev/sdo
[2024/03/25 03:11:26] notice: Verified pass 1 of 1, round 1 of 1, on '/dev/sdo'.
[2024/03/25 03:11:26] notice: Finished pass 1/1, round 1/1, on /dev/sdo
[2024/03/25 03:11:26] notice: Finished final round 1 of 1 on /dev/sdo
[2024/03/25 03:11:26] error: 14653925 verification errors on '/dev/sdo'.
[2024/03/25 03:27:01] notice: 200049647616 bytes written to /dev/sdr
[2024/03/25 03:27:01] notice: Verifying pass 1 of 1, round 1 of 1, on /dev/sdr
[2024/03/25 03:27:01] notice: Initialising AES CTR PRNG
[2024/03/25 03:35:21] notice: 240057409536 bytes written to /dev/sdh
[2024/03/25 03:35:21] notice: Verifying pass 1 of 1, round 1 of 1, on /dev/sdh
[2024/03/25 03:35:21] notice: Initialising AES CTR PRNG
[2024/03/25 03:35:54] notice: 240057409536 bytes written to /dev/sdp
[2024/03/25 03:35:54] notice: Verifying pass 1 of 1, round 1 of 1, on /dev/sdp
[2024/03/25 03:35:54] notice: Initialising AES CTR PRNG
[2024/03/25 03:44:36] notice: 200049647616 bytes read from /dev/sdr
[2024/03/25 03:44:36] notice: Verified pass 1 of 1, round 1 of 1, on '/dev/sdr'.
[2024/03/25 03:44:36] notice: Finished pass 1/1, round 1/1, on /dev/sdr
[2024/03/25 03:44:36] notice: Finished final round 1 of 1 on /dev/sdr
[2024/03/25 03:50:59] notice: 500107862016 bytes written to /dev/sdi
[2024/03/25 03:50:59] notice: Verifying pass 1 of 1, round 1 of 1, on /dev/sdi
[2024/03/25 03:50:59] notice: Initialising AES CTR PRNG
[2024/03/25 03:51:49] notice: 240057409536 bytes read from /dev/sdh
[2024/03/25 03:51:49] notice: Verified pass 1 of 1, round 1 of 1, on '/dev/sdh'.
[2024/03/25 03:51:49] notice: Finished pass 1/1, round 1/1, on /dev/sdh
[2024/03/25 03:51:49] notice: Finished final round 1 of 1 on /dev/sdh
[2024/03/25 03:52:28] notice: 240057409536 bytes read from /dev/sdp
[2024/03/25 03:52:28] notice: Verified pass 1 of 1, round 1 of 1, on '/dev/sdp'.
[2024/03/25 03:52:28] notice: Finished pass 1/1, round 1/1, on /dev/sdp
[2024/03/25 03:52:28] notice: Finished final round 1 of 1 on /dev/sdp
[2024/03/25 03:54:43] notice: 240057409536 bytes written to /dev/sdj
[2024/03/25 03:54:43] notice: Verifying pass 1 of 1, round 1 of 1, on /dev/sdj
[2024/03/25 03:54:43] notice: Initialising AES CTR PRNG
[2024/03/25 04:11:16] notice: 240057409536 bytes read from /dev/sdj
[2024/03/25 04:11:16] notice: Verified pass 1 of 1, round 1 of 1, on '/dev/sdj'.
[2024/03/25 04:11:16] notice: Finished pass 1/1, round 1/1, on /dev/sdj
[2024/03/25 04:11:16] notice: Finished final round 1 of 1 on /dev/sdj
[2024/03/25 04:11:16] error: 58607765 verification errors on '/dev/sdj'.
[2024/03/25 04:14:57] notice: 80026361856 bytes written to /dev/sdaa
[2024/03/25 04:14:57] notice: Verifying pass 1 of 1, round 1 of 1, on /dev/sdaa
[2024/03/25 04:14:57] notice: Initialising AES CTR PRNG
[2024/03/25 04:26:53] notice: 500107862016 bytes read from /dev/sdi
[2024/03/25 04:26:53] notice: Verified pass 1 of 1, round 1 of 1, on '/dev/sdi'.
[2024/03/25 04:26:53] notice: Finished pass 1/1, round 1/1, on /dev/sdi
[2024/03/25 04:26:53] notice: Finished final round 1 of 1 on /dev/sdi
[2024/03/25 05:27:12] notice: 80026361856 bytes read from /dev/sdaa
[2024/03/25 05:27:12] notice: Verified pass 1 of 1, round 1 of 1, on '/dev/sdaa'.
[2024/03/25 05:27:12] notice: Finished pass 1/1, round 1/1, on /dev/sdaa
[2024/03/25 05:27:12] notice: Finished final round 1 of 1 on /dev/sdaa
[2024/03/25 06:27:29] notice: 1200243695616 bytes written to /dev/sdk
[2024/03/25 06:27:29] notice: Verifying pass 1 of 1, round 1 of 1, on /dev/sdk
[2024/03/25 06:27:29] notice: Initialising AES CTR PRNG
[2024/03/25 06:27:30] notice: 1200243695616 bytes written to /dev/sdt
[2024/03/25 06:27:30] notice: Verifying pass 1 of 1, round 1 of 1, on /dev/sdt
[2024/03/25 06:27:30] notice: Initialising AES CTR PRNG
[2024/03/25 06:45:59] notice: 1000204886016 bytes written to /dev/sdf
[2024/03/25 06:45:59] notice: Verifying pass 1 of 1, round 1 of 1, on /dev/sdf
[2024/03/25 06:45:59] notice: Initialising AES CTR PRNG
[2024/03/25 06:47:07] notice: 1000204886016 bytes written to /dev/sdl
[2024/03/25 06:47:07] notice: Verifying pass 1 of 1, round 1 of 1, on /dev/sdl
[2024/03/25 06:47:07] notice: Initialising AES CTR PRNG
[2024/03/25 06:47:31] notice: 1000204886016 bytes written to /dev/sdd
[2024/03/25 06:47:31] notice: Verifying pass 1 of 1, round 1 of 1, on /dev/sdd
[2024/03/25 06:47:31] notice: Initialising AES CTR PRNG
[2024/03/25 06:49:17] notice: 1000204886016 bytes written to /dev/sde
[2024/03/25 06:49:17] notice: Verifying pass 1 of 1, round 1 of 1, on /dev/sde
[2024/03/25 06:49:17] notice: Initialising AES CTR PRNG
[2024/03/25 07:09:00] notice: 1000204886016 bytes written to /dev/sdz
[2024/03/25 07:09:00] notice: Verifying pass 1 of 1, round 1 of 1, on /dev/sdz
[2024/03/25 07:09:00] notice: Initialising AES CTR PRNG
[2024/03/25 07:09:41] notice: 1000204886016 bytes written to /dev/sdw
[2024/03/25 07:09:41] notice: Verifying pass 1 of 1, round 1 of 1, on /dev/sdw
[2024/03/25 07:09:41] notice: Initialising AES CTR PRNG
[2024/03/25 07:10:09] notice: 1000204886016 bytes written to /dev/sdu
[2024/03/25 07:10:09] notice: Verifying pass 1 of 1, round 1 of 1, on /dev/sdu
[2024/03/25 07:10:09] notice: Initialising AES CTR PRNG
[2024/03/25 07:10:50] notice: 1000204886016 bytes written to /dev/sdv
[2024/03/25 07:10:50] notice: Verifying pass 1 of 1, round 1 of 1, on /dev/sdv
[2024/03/25 07:10:50] notice: Initialising AES CTR PRNG
[2024/03/25 08:07:22] notice: 500107862016 bytes written to /dev/sdab
[2024/03/25 08:07:22] notice: Verifying pass 1 of 1, round 1 of 1, on /dev/sdab
[2024/03/25 08:07:22] notice: Initialising AES CTR PRNG
[2024/03/25 08:36:24] notice: 1200243695616 bytes read from /dev/sdt
[2024/03/25 08:36:24] notice: Verified pass 1 of 1, round 1 of 1, on '/dev/sdt'.
[2024/03/25 08:36:24] notice: Finished pass 1/1, round 1/1, on /dev/sdt
[2024/03/25 08:36:24] notice: Finished final round 1 of 1 on /dev/sdt
[2024/03/25 08:36:24] notice: 1200243695616 bytes read from /dev/sdk
[2024/03/25 08:36:24] notice: Verified pass 1 of 1, round 1 of 1, on '/dev/sdk'.
[2024/03/25 08:36:24] notice: Finished pass 1/1, round 1/1, on /dev/sdk
[2024/03/25 08:36:24] notice: Finished final round 1 of 1 on /dev/sdk
[2024/03/25 09:27:02] notice: 1000204886016 bytes read from /dev/sdf
[2024/03/25 09:27:02] notice: Verified pass 1 of 1, round 1 of 1, on '/dev/sdf'.
[2024/03/25 09:27:02] notice: Finished pass 1/1, round 1/1, on /dev/sdf
[2024/03/25 09:27:02] notice: Finished final round 1 of 1 on /dev/sdf
[2024/03/25 09:28:33] notice: 1000204886016 bytes read from /dev/sdl
[2024/03/25 09:28:33] notice: Verified pass 1 of 1, round 1 of 1, on '/dev/sdl'.
[2024/03/25 09:28:33] notice: Finished pass 1/1, round 1/1, on /dev/sdl
[2024/03/25 09:28:33] notice: Finished final round 1 of 1 on /dev/sdl
[2024/03/25 09:29:30] notice: 1000204886016 bytes read from /dev/sdd
[2024/03/25 09:29:30] notice: Verified pass 1 of 1, round 1 of 1, on '/dev/sdd'.
[2024/03/25 09:29:30] notice: Finished pass 1/1, round 1/1, on /dev/sdd
[2024/03/25 09:29:30] notice: Finished final round 1 of 1 on /dev/sdd
[2024/03/25 09:34:51] notice: 1000204886016 bytes read from /dev/sde
[2024/03/25 09:34:51] notice: Verified pass 1 of 1, round 1 of 1, on '/dev/sde'.
[2024/03/25 09:34:51] notice: Finished pass 1/1, round 1/1, on /dev/sde
[2024/03/25 09:34:51] notice: Finished final round 1 of 1 on /dev/sde
[2024/03/25 09:34:51] error: 244090646 verification errors on '/dev/sde'.
[2024/03/25 10:09:03] notice: 1000204886016 bytes read from /dev/sdz
[2024/03/25 10:09:03] notice: Verified pass 1 of 1, round 1 of 1, on '/dev/sdz'.
[2024/03/25 10:09:03] notice: Finished pass 1/1, round 1/1, on /dev/sdz
[2024/03/25 10:09:03] notice: Finished final round 1 of 1 on /dev/sdz
[2024/03/25 10:10:01] notice: 1000204886016 bytes read from /dev/sdw
[2024/03/25 10:10:01] notice: Verified pass 1 of 1, round 1 of 1, on '/dev/sdw'.
[2024/03/25 10:10:01] notice: Finished pass 1/1, round 1/1, on /dev/sdw
[2024/03/25 10:10:01] notice: Finished final round 1 of 1 on /dev/sdw
[2024/03/25 10:10:45] notice: 1000204886016 bytes read from /dev/sdu
[2024/03/25 10:10:45] notice: Verified pass 1 of 1, round 1 of 1, on '/dev/sdu'.
[2024/03/25 10:10:45] notice: Finished pass 1/1, round 1/1, on /dev/sdu
[2024/03/25 10:10:45] notice: Finished final round 1 of 1 on /dev/sdu
[2024/03/25 10:12:30] notice: 1000204886016 bytes read from /dev/sdv
[2024/03/25 10:12:30] notice: Verified pass 1 of 1, round 1 of 1, on '/dev/sdv'.
[2024/03/25 10:12:30] notice: Finished pass 1/1, round 1/1, on /dev/sdv
[2024/03/25 10:12:30] notice: Finished final round 1 of 1 on /dev/sdv
[2024/03/25 11:42:39] notice: 500107862016 bytes read from /dev/sdab
[2024/03/25 11:42:39] notice: Verified pass 1 of 1, round 1 of 1, on '/dev/sdab'.
[2024/03/25 11:42:39] notice: Finished pass 1/1, round 1/1, on /dev/sdab
[2024/03/25 11:42:39] notice: Finished final round 1 of 1 on /dev/sdab
[2024/03/25 12:33:09] fatal: Nwipe exited with errors on device = /dev/sde, see log for specific error
[2024/03/25 12:33:09] fatal: Nwipe exited with errors on device = /dev/sdj, see log for specific error
[2024/03/25 12:33:09] fatal: Nwipe exited with errors on device = /dev/sdo, see log for specific error
******************************** Error Summary *********************************
! Device | Pass Errors | Verifications Errors | Fdatasync I\O Errors
--------------------------------------------------------------------------------
sdd | 0 | 0 | 0
! sde | 1 | 244090646 | 0
sdf | 0 | 0 | 0
sdh | 0 | 0 | 0
sdi | 0 | 0 | 0
! sdj | 1 | 58607765 | 0
sdk | 0 | 0 | 0
sdl | 0 | 0 | 0
! sdo | 1 | 14653925 | 0
sdp | 0 | 0 | 0
sdr | 0 | 0 | 0
sdt | 0 | 0 | 0
sdu | 0 | 0 | 0
sdv | 0 | 0 | 0
sdw | 0 | 0 | 0
sdz | 0 | 0 | 0
sdaa | 0 | 0 | 0
sdab | 0 | 0 | 0
********************************************************************************
********************************* Drive Status *********************************
! Device | Status | Thru-put | HH:MM:SS | Model/Serial Number
--------------------------------------------------------------------------------
sdd | Erased | 85 MB/s | 06:30:58 | ST1000NX0423/XXXXXXXXXXXXXXXXXXXX
! sde |-FAILED-| 84 MB/s | 06:36:19 | ST1000NX0423/XXXXXXXXXXXXXXXXXXXX
sdf | Erased | 85 MB/s | 06:28:30 | ST1000NX0423/XXXXXXXXXXXXXXXXXXXX
sdh | Erased | 150 MB/s | 06:53:17 | SanDisk SSD PLUS/XXXXXXXXXXXXXXXXXXXX
sdi | Erased | 188 MB/s | 01:28:21 | CT500MX500SSD1/XXXXXXXXXXXXXXXXXXXX
! sdj |-FAILED-| 110 MB/s | 01:12:44 | OCZ-TRION100/XXXXXXXXXXXXXXXXXXXX
sdk | Erased | 118 MB/s | 05:37:52 | SEAGATE ST1200MM0/XXXXXXXXXXXXXXXXXXXX
sdl | Erased | 85 MB/s | 06:30:01 | ST1000NX0423/XXXXXXXXXXXXXXXXXXXX
! sdo |-FAILED-| 155 MB/s | 06:12:54 | Corsair Force LS/XXXXXXXXXXXXXXXXXXXX
sdp | Erased | 148 MB/s | 06:53:56 | SanDisk SSD PLUS/XXXXXXXXXXXXXXXXXXXX
sdr | Erased | 144 MB/s | 06:46:04 | STEC SDT5C-S200SS/XXXXXXXXXXXXXXXXXXXX
sdt | Erased | 118 MB/s | 05:37:52 | SEAGATE ST1200MM0/XXXXXXXXXXXXXXXXXXXX
sdu | Erased | 77 MB/s | 07:12:13 | HP MM1000FBFVR/XXXXXXXXXXXXXXXXXXXX
sdv | Erased | 76 MB/s | 07:13:58 | HP MM1000FBFVR/XXXXXXXXXXXXXXXXXXXX
sdw | Erased | 77 MB/s | 07:11:29 | HP MM1000FBFVR/XXXXXXXXXXXXXXXXXXXX
sdz | Erased | 77 MB/s | 07:10:31 | HP MM1000FBFVR/XXXXXXXXXXXXXXXXXXXX
sdaa | Erased | 17 MB/s | 02:28:40 | Seagate FreeAgent/XXXXXXXXXXXXXXXXXXXX
sdab | Erased | 31 MB/s | 08:44:07 | Samsung SSD 860 E/XXXXXXXXXXXXXXXXXXXX
--------------------------------------------------------------------------------
[2024/03/25 12:34:14] Total Throughput 1833 MB/s, PRNG Stream, 1R+NB+VA
********************************************************************************
Creating PDF report in .
[2024/03/25 12:34:14] info: Nwipe was aborted by the user. Check the summary table for the drive status. |
|
Based on drive I/O throughput, it looks like AES-CTR is about 10% slower than XORshiro. |
|
Below is the hex data of the first block of a drive that failed verification on every block, looking like random data. 00000000 16 88 DC 48 DD 6E E1 6E F4 4D CE 51 D4 4D 54 8E DE 4C 73 4F ...H.n.n.M.Q.MT..LsO
00000014 4E 67 8F 3B 75 6D 99 42 86 75 DD 92 9D 6D F4 01 DC D6 F3 0A Ng.;um.B.u...m......
00000028 E7 C7 FB F8 57 FA E0 E3 82 B4 B9 B4 8C 4A 72 3B F2 1A 0E B4 ....W........Jr;....
0000003C 50 B3 B5 E5 3D DB FE A7 4B 6F A7 6C 01 F4 FD 89 F1 57 24 27 P...=...Ko.l.....W$'
00000050 81 9F F1 5F E5 CD 49 CD CC D7 02 BB 80 0F 8A B2 16 69 7F 7D ..._..I..........i.}
00000064 DE 56 38 18 5B 34 98 03 AF CA E5 EA BC CD C0 24 62 89 C2 83 .V8.[4.........$b...
00000078 BA 4D 2B C6 31 14 AF 7F A9 42 BC DE 1D BE FD 5D 61 1E ED 0F .M+.1....B.....]a...
0000008C 66 EB FB 03 0E FC 39 9E B9 C4 0E FF 55 C7 55 9D 62 21 52 45 f.....9.....U.U.b!RE
000000A0 D5 C9 69 AF 70 A7 C4 17 0B 05 31 32 56 DF 75 25 FC 41 69 37 ..i.p.....12V.u%.Ai7
000000B4 35 12 EA DF 2C F7 E2 4C CA 82 E3 8C 98 F0 EB 5B 82 4A E8 FC 5...,..L.......[.J..
000000C8 CA 05 B3 A2 07 EF 79 FA EF AF D9 76 17 59 F7 00 B7 7F BA 05 ......y....v.Y......
000000DC 5D 45 20 4B 28 9D 09 5E F1 8A 4D FC D2 14 03 FC 23 96 66 BD ]E K(..^..M.....#.f.
000000F0 5F 46 CC 11 73 27 4B 49 D9 0C 8D A8 E5 B1 EE CC 0A 50 6A 74 _F..s'KI.........Pjt
00000104 EF CD 37 17 40 19 11 C8 57 88 68 ED EE ED F1 3B 3F D1 2D CA ..7.@...W.h....;?.-.
00000118 CE 4C A8 26 83 70 D4 D2 F6 C6 BC 9A 9F C0 2B 6B 3D 89 3C BA .L.&.p........+k=.<.
0000012C 7D C7 6D 3E 34 2E 2B C4 86 1A E7 F2 A3 BC B5 21 37 A2 8F 8A }.m>4.+........!7...
00000140 63 F3 04 71 30 44 E9 08 7A 9E D9 A0 A0 C9 89 1C 30 23 B5 54 c..q0D..z.......0#.T
00000154 EC 79 75 E5 7A FB 4E A8 61 DD 91 A4 0A 36 F0 C5 96 EB 70 B8 .yu.z.N.a....6....p.
00000168 ED 56 27 1D B9 6D 67 8D 62 80 21 8E E3 FD EC 34 E5 C7 CB 6E .V'..mg.b.!....4...n
0000017C 4C 08 31 CF 50 51 E1 23 9C D3 0E F2 DC 7C 5D 44 FD 53 DC 1C L.1.PQ.#.....|]D.S..
00000190 8E C3 85 B8 4A 28 22 37 58 E4 12 51 D0 C6 DB 64 DD 8C 60 12 ....J("7X..Q...d..`.
000001A4 37 99 3E 07 66 7A 9C 62 54 E3 BB 20 24 67 96 7F 7B 03 F3 1D 7.>.fz.bT.. $g..{...
000001B8 92 8F 8F 90 43 8C 07 C7 BF A6 8D 46 E1 1B 4A EA 60 DC 3E E4 ....C......F..J.`.>.
000001CC E6 D0 D2 69 66 56 00 9B 36 3A 8E 17 79 61 72 B0 6E 05 74 0B ...ifV..6:..yar.n.t.
000001E0 3F 5A 9D E3 17 C7 EA 51 21 65 83 43 AA A9 A7 54 DF 88 4C 8F ?Z.....Q!e.C...T..L.
000001F4 50 82 E6 10 58 0D 45 DF BE B0 14 24 85 A0 0E EF 89 4C 80 51 P...X.E....$.....L.Q
00000208 CF C0 71 1A C8 39 85 B3 62 E2 68 66 A1 AC AC C1 54 EC AA 8D ..q..9..b.hf....T...
0000021C 37 8C D8 78 9F 6F 8D 9D 12 A2 05 A7 CC B7 E1 8B 1E 69 8B 1E 7..x.o...........i..
00000230 D8 9B 4A 5E 5E 33 BB 27 8B 14 EE CD E9 63 19 E3 9D 22 04 EA ..J^^3.'.....c..."..
00000244 C2 2F B5 D4 FA 1D 96 2C B4 5D 73 35 D3 67 D9 BD C3 77 B6 2E ./.....,.]s5.g...w..
00000258 B3 1B B7 76 A5 E6 C8 29 D1 AB A2 9D 2E 18 82 D7 D3 AC 04 24 ...v...)...........$
0000026C FF FB 3F 56 C1 7C EF 57 B7 C2 74 51 0B 6B 3D AF 6F DF 37 5B ..?V.|.W..tQ.k=.o.7[
00000280 FB A1 B2 E7 A8 81 C7 BF 29 64 8E A9 23 A9 27 64 8A A8 1B 67 ........)d..#.'d...g
00000294 22 81 1B 54 6C 1C 4D F9 E0 4C 0D B9 31 DF 39 39 07 71 8A B3 "..Tl.M..L..1.99.q..
000002A8 C0 D4 2C 27 E5 7D 23 A6 77 18 C3 C0 65 45 14 57 8D 90 14 CA ..,'.}#.w...eE.W....
000002BC C8 33 99 25 57 35 15 E7 E2 98 0C 30 75 22 D9 2E 43 57 96 77 .3.%W5.....0u"..CW.w
000002D0 89 58 0B 95 E7 69 B2 63 9C E9 E5 B6 49 93 31 DF 54 55 E6 B6 .X...i.c....I.1.TU..
000002E4 D0 94 27 AB 77 CC DE F8 B9 D9 29 9A 50 AA B6 CA FA E7 D8 FC ..'.w.....).P.......
000002F8 99 A6 E2 A3 0E 33 75 7B 46 6A F4 A9 CF 57 19 4A B9 32 32 FB .....3u{Fj...W.J.22.
0000030C 28 BA 40 06 48 AB 3E B9 CF 82 46 FF 87 CC 05 53 26 E1 BC 0E (.@.H.>...F....S&...
00000320 31 F2 D1 F8 83 D9 C6 3E BA F8 44 40 41 2D 4A 13 B2 C7 0D 35 1......>..D@A-J....5
00000334 F7 1C 01 47 CB C5 02 41 BF D4 5A 97 92 2F 20 27 3F 0E E7 45 ...G...A..Z../ '?..E
00000348 AA 91 A5 5E A9 4B 2E 52 B5 80 78 CD 4E AF 13 2B 41 19 2E 2A ...^.K.R..x.N..+A..*
0000035C 30 96 5C 6A 21 5C E3 DC 5A DE 3E 8A AF 9D 2B 20 6E 8D A9 92 0.\j!\..Z.>...+ n...
00000370 38 B0 72 C7 04 E9 B6 07 8B C9 E9 6E 82 E1 F6 BD 28 D3 9D 04 8.r........n....(...
00000384 2C 50 1B 9C D3 64 DD F5 33 84 D5 01 19 B4 40 C2 6B A6 B9 67 ,P...d..3.....@.k..g
00000398 13 AF 43 96 DC 03 FB B8 BF 97 3C 73 13 C4 59 C8 DF 7A 9B CF ..C.......<s..Y..z..
000003AC C6 E3 03 33 CA DF 94 0D 63 63 55 E1 A9 F0 98 87 89 63 5F DC ...3....ccU......c_.
000003C0 D8 C1 CE C7 C3 6D 5D B6 92 A2 3A B3 6C 25 EA AA 39 61 B4 E4 .....m]...:.l%..9a..
000003D4 A2 ED 85 6E F5 8F 5F 37 B2 D0 D6 50 4B 0B DB BE 36 19 ED 6E ...n.._7...PK...6..n
000003E8 17 B6 2C 9A E4 00 A2 54 02 BA 64 6B 30 A1 1A 67 6B 8B FB 75 ..,....T..dk0..gk..u
000003FC AE E7 C8 60 1F B3 28 48 EA 63 1E 23 19 06 E4 A0 1C 88 5B 25 ...`..(H.c.#......[%
00000410 E8 BC FE 45 9B 34 EA B7 B5 43 DE 47 07 5F E6 47 CD B7 2C 47 ...E.4...C.G._.G..,G
00000424 CC EA 8A C3 07 5D 25 2A 44 A1 CF 3D 56 C7 0F 6B FC 79 EE 74 .....]%*D..=V..k.y.t |
|
@Knogle If you want me to rerun the test with some debug code added, let me know. |
Thanks a lot for your testing already. Can you clone my aes-ctr-debug branch and build it? I will add further debug code there to not mess up this PR. I personally i am suspecting still some kind of buffer overflow of |
|
debug branch is running. I'll update you in a few hours. |
|
Thanks! I really hope we can sort this out :) |
|
Fails as before, different drives though. Bug in openssl? nwipe_AES_CTR_DEBUG-1_18_drive_test_FAIL-2024-03-25_19.43.16.mp4 |
|
Hey. To be honest i dont suspect an issue in OpenSSL here. I've opened an issue on https://github.com/openssl/openssl already and we've gone through everything. Could you run your run with EDIT: I am also suspecting something behind the writing process into the buffer. |
|
I can try to utilize the EDIT: I've updated the debug branch again, maybe another try? |
The test is running. |
|
Failed.
|
|
Oh okay, now i am really out of ideas unfortunately. |
I'm just thinking about logging the key, state IV and first 4096 block to a file on every initialisation along with data identifying the device. Then a comparison can be made between these values on the wipe & verification passes. These values should then hopefully identify whether the problem is in the nwipe code or the openssl code. You said valgrind was reporting un-initialised variables somewhere? Was that in the openssl functions? Also the function calls in the initialisation function should really have there return status checked and a output to nwipe_log on failure. I had a look at the EVP code and it does look like it should be thread safe (in theory). Unfortunately wrapping the openssl functions in a lock drastically reduces throughput < 1MB/sec and would take 200+ hours to complete the test. So for the time being I've put that to one side. |
|
Please give it a try :) I'm curious about your results. Using valgrind i was able to find out, But we are correctly allocating memory and initializing it through
The RAM layout is more or less like this
if Here one of my snippets in order to logging. #include "aes_ctr_prng.h"
#include <openssl/evp.h>
#include <openssl/sha.h>
#include <string.h>
#include <stdio.h>
#include <openssl/err.h>
// Helper function to log data as a hex string to a file
void log_data_to_file(const char* filename, const unsigned char* data, size_t data_len) {
FILE* file = fopen(filename, "a"); // 'a' to append at the end of the file
if (!file) {
perror("Error opening log file");
return;
}
for (size_t i = 0; i < data_len; ++i) {
fprintf(file, "%02X", data[i]);
}
fprintf(file, "\n");
fclose(file);
}
void aes_ctr_prng_init(aes_ctr_state_t* state, unsigned long init_key[], unsigned long key_length) {
unsigned char key[32]; // Space for a 256-bit key
int ret;
memset(state->ivec, 0, AES_BLOCK_SIZE);
state->num = 0;
memset(state->ecount, 0, AES_BLOCK_SIZE);
EVP_MD_CTX* mdctx = EVP_MD_CTX_new();
if (!mdctx) {
fprintf(stderr, "Failed to create EVP_MD_CTX\n");
ERR_print_errors_fp(stderr);
return;
}
ret = EVP_DigestInit_ex(mdctx, EVP_sha256(), NULL);
if (!ret) {
fprintf(stderr, "EVP_DigestInit_ex failed\n");
ERR_print_errors_fp(stderr);
EVP_MD_CTX_free(mdctx);
return;
}
ret = EVP_DigestUpdate(mdctx, (unsigned char*)init_key, key_length * sizeof(unsigned long));
if (!ret) {
fprintf(stderr, "EVP_DigestUpdate failed\n");
ERR_print_errors_fp(stderr);
EVP_MD_CTX_free(mdctx);
return;
}
ret = EVP_DigestFinal_ex(mdctx, key, NULL);
if (!ret) {
fprintf(stderr, "EVP_DigestFinal_ex failed\n");
ERR_print_errors_fp(stderr);
EVP_MD_CTX_free(mdctx);
return;
}
EVP_MD_CTX_free(mdctx);
state->ctx = EVP_CIPHER_CTX_new();
if (!state->ctx) {
fprintf(stderr, "Failed to create EVP_CIPHER_CTX\n");
ERR_print_errors_fp(stderr);
return;
}
ret = EVP_EncryptInit_ex(state->ctx, EVP_aes_256_ctr(), NULL, key, state->ivec);
if (!ret) {
fprintf(stderr, "EVP_EncryptInit_ex failed\n");
ERR_print_errors_fp(stderr);
EVP_CIPHER_CTX_free(state->ctx);
return;
}
// Log the initial values of ivec and key
log_data_to_file("ivec_log.txt", state->ivec, AES_BLOCK_SIZE);
log_data_to_file("key_log.txt", key, sizeof(key));
}
void aes_ctr_prng_genrand_uint128_to_buf(aes_ctr_state_t* state, unsigned char* bufpos) {
unsigned char temp_buffer[16]; // Intermediate buffer for 128 bits
int outlen;
// Generate pseudorandom numbers in the intermediate buffer
EVP_EncryptUpdate(state->ctx, temp_buffer, &outlen, temp_buffer, sizeof(temp_buffer));
// Directly copy the generated random data to the destination buffer
memcpy(bufpos, temp_buffer, 16);
// The following logging is commented out for potential future use
// To activate logging, remove the comments from the next lines
// Log the current values of ecount
// log_data_to_file("ecount_log.txt", state->ecount, AES_BLOCK_SIZE);
// Log the generated pseudorandom data
// log_data_to_file("prng_output_log.txt", temp_buffer, sizeof(temp_buffer));
}What i would be interested in. In this function, you could change the for loop, which writes 4x 32-Bit values to 1, in order to write 1x32-Bit only. int nwipe_aes_ctr_prng_read(NWIPE_PRNG_READ_SIGNATURE) {
u8* restrict bufpos = buffer;
size_t words = count / SIZE_OF_AES_CTR_PRNG;
/* Loop to fill the buffer with 128-bit blocks */
for (size_t ii = 0; ii < words; ++ii) {
unsigned char temp_buffer[16]; // Temporary buffer for 128-bit random data
aes_ctr_prng_genrand_uint128_to_buf((aes_ctr_state_t*)*state, temp_buffer);
// Now, instead of incrementing bufpos by SIZE_OF_AES_CTR_PRNG, we use u32_to_buffer to write each 32-bit block
for (int i = 0; i < 4; ++i) {
// Extract a 32-bit value from temp_buffer
u32 val;
memcpy(&val, temp_buffer + (i * 4), 4);
// Use u32_to_buffer to write this 32-bit value into the main buffer
u32_to_buffer(bufpos, val, 4);
bufpos += 4; // Move to the next position in buffer for the next 32-bit block
}
} |
|
Best practice would be, adding this here in the But unfortunately causes a segfault. But it's best practice to release the encryption context after the streaming is done. void aes_ctr_prng_cleanup(aes_ctr_state_t* state) {
if (state != NULL) {
// Release the encryption context
if (state->ctx != NULL) {
EVP_CIPHER_CTX_free(state->ctx);
state->ctx = NULL; // It's good practice to set the pointer to NULL after freeing
}
// Further cleanup could go here if `aes_ctr_state_t`
// contains other resources that need to be released.
// Since state here is a pointer to a structure that may have been allocated
// outside of this function, we do not set state itself to NULL.
// It is the caller's responsibility to manage the lifetime of the state object.
}
}And in prng.c int nwipe_aes_ctr_prng_read(NWIPE_PRNG_READ_SIGNATURE) {
[...]
aes_ctr_prng_cleanup((aes_ctr_state_t*)*state);
return 0; // Success
}Would be best practice, but leads to a Segmentation fault, don't know why. What's HIGHLY interesting here.
|
|
Please give it a try again the latest commit in the aes-ctr-debug branch, i've done a major rewrite, If this one also doesn't work, maybe you have some idea.
|
|
The 16 drive test has started using the code with your new cleanup function, will update you shortly. |
|
Unfortunately failed again. I'm also not seeing the performance gain. I've double checked the code I'm compiling is the new code with the cleanup function, so I'm pretty sure 2 or 3 drives will fail verification once the wipe completes.
and three drives fail and once again not always the same drives.
|
|
Oh okay. Running with Next steps i can try after this:
|
|
Running valgrind to completion is not practical as it would take over 500hrs, however i did start a 16 drive wipe with valgrind and aborted after a few minutes. The log may have something useful. Bearing in mind I'm wiping 16 drives which means there are 16 wipe threads in operation, one GUI thread and a temperature thread, valgrind reported a single thread with a issue. Thread 4 .. The calloc mentioned is the allocation of 4096 bytes where we read the prngs data into. The error indicates a overrun of 1 byte passed the end of the 4096 block of memory. My first thought is that the prngs length is incorrect but for only that one byte. Does this make sense? So maybe recording the prng length field during initialisation, i.e that would be 16 entries in the nwipe log the value should of course all be the same. |
|
Implicit declaration: aes_ctr_prng_init is not declared in aes_ctr_prng.h
|
|
Ignore that last comment, I was looking at your master not the aes-ctr-debug branch. However aes_ctr_prng_cleanup has an implicit declaration. |
|
Slightly of topic and as a reminder for me, I need to update the PDF code to report the xoro & Fibonacci prngs correctly rather than saying the prng is unknown.
|
|
Sounds great ! :) What do you think, i could start troubleshooting the existing memory leak issue in |
|
I've found the issue in pass.c /* For the first block only, check the prng actually wrote something to the buffer */
if( z == c->device_size )
{
idx = c->device_stat.st_blksize;
while( idx > 0 )
{
if( b[idx] != 0 )
{
nwipe_log( NWIPE_LOG_NOTICE, "prng stream is active" );
break;idx = c->device_stat.st_blksize - 1;
while( idx > 0 )
{
if( b[idx] != 0 )
{
nwipe_log( NWIPE_LOG_NOTICE, "prng stream is active" );
break;
}I will set up a PR for that. |
|
Had to double check, but here we had the same issue. Depending on architecture the seed length was different, due to |
|
@Knogle I've been thinking about whether to squash these 34 commits to a single commit, however I'm conflicted as to whether it's necessary or not in this case. Your commit comments are informative, however there are a few where you reverse a previous commit so the commit history would be tidier by squashing to a single commit. I just wondered if you had a preference? If I did squash the commits to a single commit would you want to do it in git and write the new commit comment for this branch or do you want me to do it in github by doing a merge squash and I write the new commit comment.? |
Hey, you could squash them by yourself if that's okay :) |
yes, no problem. |
Noted, I will read through all the current commit comments and include information I think is important. My comment will probably lean towards being more verbose rather than succinct. |
|
@Knogle Can you also hold fire on producing any new branches based on your existing branch. I'm concerned I'm going to have quite a few merge conflicts to resolve when I come to merging your subsequent branches. So I'd like to get you existing work merged so you can then update your own fork before creating any new branches after all your existing PRs have been merged. Thanks. |
Sure, i will do so :) |
|
Currently conducting some tests on ARM :) Unfortunately my SD card is massively limiting. |
|
Yes, I've run 0.37 on arm, Ubuntu with xfce desktop on RPI-4 8GB RAM. Configured to boot via USB rather microsd. Seemed to work ok, I've not done any speed tests to see how fast a drive attached via USB will be subject to the drive limitations. |
|
@PartialVolume We could instead copy the relevant stuff out of the OpenSSL librarian and include it in our code without external dependency. The OpenSSL licence allows us to do so. Looks like this. |
Yes the second approach, that could work for us. |
…th OpenSSL and AES-NI support This commit introduces significant improvements to `nwipe`'s random number generation by implementing AES-CTR mode using OpenSSL with AES-NI hardware acceleration. The changes include: - **AES-CTR PRNG Implementation**: A new pseudo-random number generator (PRNG) based on AES-128 in counter (CTR) mode has been added. This PRNG uses OpenSSL’s EVP API for cryptographic operations, ensuring strong random number generation. - **AES-NI Hardware Support**: The PRNG now detects if the system supports AES-NI and uses hardware acceleration when available for improved performance, particularly on 64-bit systems. A new function `has_aes_ni()` checks for AES-NI support, ensuring that the fastest available option is used. - **Default PRNG Selection**: For 64-bit systems, AES-CTR is now the default PRNG due to its higher performance and security. On 32-bit systems, the XORoshiro-256 PRNG remains the default due to performance considerations. - **Improved Error Handling**: Error handling has been extensively revised. The AES-CTR PRNG now provides detailed error messages, including the detection of potential OpenSSL failures, and uses structured logging (`NWIPE_LOG_DEBUG` and `NWIPE_LOG_NOTICE`) to report PRNG initialization and errors. - **Memory Management**: Smart pointers have been introduced to manage memory automatically within the AES-CTR PRNG, preventing memory leaks. All memory used by the OpenSSL contexts (EVP_MD_CTX and EVP_CIPHER_CTX) is now properly cleaned up after use. - **Performance Enhancements**: The PRNG’s performance has been optimized, especially for 64-bit systems. Additionally, the code now checks for edge cases when reading remaining bytes, and memset is used to handle uninitialized memory areas. - **Formatting and Code Cleanup**: Deprecated SHA256 calls have been replaced with OpenSSL’s EVP API. Multiple formatting issues in various source files (`pass.c`, `options.c`, `gui.c`, etc.) have been fixed, improving code readability and compliance with the coding standards. - **Regression Fixes**: Several small regressions from previous changes have been fixed, including uninitialized variables, implicit function declarations, and incorrect function calls that previously led to warnings and potential crashes (e.g., segfaults in `pass.c`). - **Logging and Debugging**: Improved logging messages and detailed debug information have been added, particularly around the AES-CTR initialization and error handling paths. This implementation significantly improves the security, performance, and reliability of random number generation in `nwipe` and ensures that the tool is better equipped for modern cryptographic standards. Squashed commit of the following: commit 03284d7 Author: Fabian Druschke <[email protected]> Date: Fri Aug 23 19:17:05 2024 +0200 Fixed formatting commit 31df3eb Author: Fabian Druschke <[email protected]> Date: Fri Aug 23 19:15:01 2024 +0200 Fixed type error on i686 - uint64_t for AES-CTR commit e56a47c Merge: 3465260 d1edd05 Author: Fabian Druschke <[email protected]> Date: Tue Aug 20 10:39:26 2024 +0100 Merge branch 'master' into aes-ctr commit 3465260 Merge: 1bf5ff1 5140f92 Author: Fabian Druschke <[email protected]> Date: Fri May 10 01:41:09 2024 +0200 Merge branch 'master' into aes-ctr commit 1bf5ff1 Author: Fabian Druschke <[email protected]> Date: Fri May 10 01:14:11 2024 +0200 Added check for return value in prng.c and nwipe_log accordingly. commit 9015a32 Author: Fabian Druschke <[email protected]> Date: Fri May 10 00:11:59 2024 +0200 Removed error handling using goto, now returning instead. Changed from void to int functions, removed cleanup(); on error , instead relying on cleanup routine on exit. commit 10ea2bb Author: Fabian Druschke <[email protected]> Date: Mon Apr 15 13:47:05 2024 +0200 Adapted the aes-ctr-prng accordingly, to report SANITY level errors, in case of failure. commit 71e7f8f Author: Fabian Druschke <[email protected]> Date: Mon Apr 15 13:46:35 2024 +0200 Added case handling for NWIPE_LOG_LEVEL_SANITY, providing the github issue link, if a SANITY level error occurs. commit 0f3e7f5 Author: Fabian Druschke <[email protected]> Date: Mon Apr 15 00:40:22 2024 +0200 Added check in pass.c wether nwipe_aes_ctr_prng is being used or not, if not a segfault was the result. Now fixed. commit ce09d8e Author: Fabian Druschke <[email protected]> Date: Sat Apr 13 00:58:34 2024 +0200 Missing NWIPE_LOG_NOTICE for AES-CTR init changed to DEBUG level. commit 8b284f3 Author: Fabian Druschke <[email protected]> Date: Sat Apr 13 00:50:25 2024 +0200 Changed notification for successful PRNG init for AES-CTR to NWIPE_LOG_DEBUG. commit 8702cc3 Author: Fabian Druschke <[email protected]> Date: Sat Apr 13 00:13:51 2024 +0200 Added missing cleanup routine in prior commit in aes_ctr_prng.c and header definitions. commit 35cd055 Author: Fabian Druschke <[email protected]> Date: Sat Apr 13 00:12:01 2024 +0200 Fixed formatting in pass.c commit beff746 Author: Fabian Druschke <[email protected]> Date: Sat Apr 13 00:11:28 2024 +0200 Added cleanup routine aes_ctr_prng_general_cleanup() after nwipe_random_pass and nwipe_random_verify in order to cleanup PRNG state. commit 1a95202 Author: Fabian Druschke <[email protected]> Date: Fri Apr 12 23:25:04 2024 +0200 Part of the comments were missing, fixed. commit a65410a Author: Fabian Druschke <[email protected]> Date: Fri Apr 12 23:20:41 2024 +0200 Added extensive error handling, in order to check for OpenSSL library malfunction. commit 6518963 Author: Fabian Druschke <[email protected]> Date: Thu Apr 11 00:20:54 2024 +0200 Improved PRNG description for AES-CTR-256 in gui.c commit fe493cf Author: Fabian Druschke <[email protected]> Date: Wed Apr 10 23:51:12 2024 +0200 Added function has_aes_ni() in order to check for AES-Ni support, and set the PRNG accordingly. commit adcd442 Author: Fabian Druschke <[email protected]> Date: Wed Apr 10 15:40:24 2024 +0200 Handle edge case for remaining bytes in nwipe_aes_ctr_prng_read using memset. commit ce2db63 Author: Fabian Druschke <[email protected]> Date: Wed Apr 10 15:08:25 2024 +0200 Fixed comments, indicating AES-CTR-128 instead of 256 bit commit da53ee0 Author: Fabian Druschke <[email protected]> Date: Wed Apr 10 14:53:45 2024 +0200 Reverted by mistake nwipe_random back to nwipe_dodshort, now compliant with master commit e479239 Author: Fabian Druschke <[email protected]> Date: Wed Apr 10 13:23:36 2024 +0200 Fixed formatting commit e0d9584 Author: Fabian Druschke <[email protected]> Date: Wed Apr 10 13:22:25 2024 +0200 Minor changes, added comments for further explanation. commit 7410d21 Author: Fabian Druschke <[email protected]> Date: Tue Apr 9 12:49:02 2024 +0200 Fixed uninitialized temp_buffer in aes_ctr_prng_genrand_uint256_to_buf commit cd5f071 Merge: 3cb78ca 2809580 Author: PartialVolume <[email protected]> Date: Sun Apr 7 22:22:55 2024 +0100 Merge branch 'master' into aes-ctr commit 3cb78ca Author: Fabian Druschke <[email protected]> Date: Sun Mar 31 14:03:38 2024 +0200 Added error checking and nwipe_log to aes_ctr_prng.c commit 20fea0d Author: Fabian Druschke <[email protected]> Date: Sun Mar 31 13:54:54 2024 +0200 Only C implementation, removed CPP here. commit d5b39f6 Author: Fabian Druschke <[email protected]> Date: Sun Mar 31 00:43:58 2024 +0100 Introduced smart pointers to manage memory for EVP_MD_CTX and EVP_CIPHER_CTX within the AES CTR PRNG C++ implementation. This ensures automatic resource release, preventing memory leaks and enhancing code safety. commit f6aeae3 Author: Fabian Druschke <[email protected]> Date: Sun Mar 31 00:34:15 2024 +0100 Created seamless integrated .cpp AES-CTR-PRNG in order to avoid memory issues. commit eecddb2 Author: Knogle <[email protected]> Date: Sun Mar 24 22:48:06 2024 +0000 aes_ctr_prng_init was missing in header, causing implicit declaration warnings. commit 8fe4db4 Author: Knogle <[email protected]> Date: Sun Mar 24 18:30:52 2024 +0000 Replaced traditional deprecated SHA256 declarations with EVP-API infrastructure commit 55472fb Author: Knogle <[email protected]> Date: Sun Mar 24 03:43:36 2024 +0000 To consider, AES-128-CTR as default option for 64-Bit, and Xoroshiro-256 as default option for 32-Bit due to performance and quality reasons. commit 1a964bc Author: Fabian Druschke <[email protected]> Date: Sat Mar 23 19:12:24 2024 -0300 Fixed missing XORoshiro-256 in options.c bottom section. Added AES-128-CTR OpenSSL descriptions. commit cf9822a Author: Fabian Druschke <[email protected]> Date: Sat Mar 23 18:48:38 2024 -0300 Several changes, adding AES-128 using libssl in CTR mode as new PRNG, in experimental state. Fixed formatting, fixed AES PRNG header.
Ahoy, |
|
Would like to bring up the point of including the LTS version of OpenSSL which has support until September 2025. |
I still think we should be using our own AES builtin function just like all our other prngs and not using openssl at all. It's already taken up too much of my time so the only way I'm now going to merge this is if the function @Knogle presented recently (that had a few bugs) is fixed. To be honest the function was almost there, just needs some debugging. |
Thanks for your reply. So i think then the only choice would be to pursue another PRNG then. |
Things are always hard when you don't truly understand the subject. Once you understand something it all becomes surprisingly easy. I've looked at the overall procedure and it doesn't look that complicated to code. Maybe time consuming to get it right but you can at least test it against the Openssl version if you coded the shifts the same way but I've written far more complex things. Prng is your area of expertise so it's entirely up to you.
|
|
What I could offer is the previously discussed submodule approach in the recent PR, (referenced here). This involves cloning a specific version of the OpenSSL repo, doing a minimal build during the nwipe build process (instead of full-build as done before) , and statically linking it. The result is almost the same, with only a slight increase in build time. I know this has taken a lot of time for all of us, so maybe we can decide if it makes sense to go forward with this or explore other PRNGs that need less effort to implement. The custom approach might work, but I won't be pursuing it further. |
That may work as long as it doesn't increase the size of nwipe's binary too much. |
I think i am on it! |
|
Check this out :) |
|
If there is a way to not include OpenSSL at all (like Knogle suggested) I'm all for it. Less code in general and less dependencies on 3rd-party code is always a win in my mind. However if you guys were to decide to include OpenSLL for whatever reason then that's where I hoped for getting the TLS version included instead of the General Availibility releases v3.1.x, 3.2.x 3.3.x. Just thought I clarify this. |
|
@Firminator |
|
@Knogle I've discussed the inclusion of openssl with @martijnvanbrummelen and for ease of security updates we would like to go with dynamic updates and not static. I don't know if this means you need to revert any commits in this or other PRs? As we are relying upon a external library, it would be a good idea to validate some of the first blocks generated by the AES prng for randomness to be sure we abort if some future bug causes the openssl functions we are using to break and end up writing something that isn't random data. To make this easier we can just check randomness of a single block. It's really just to check that openssl hasn't failed to generate any random data so if you are generating a number to represent randomness it doesn't need to be too tight, simply that random data has been generated. |
I will do so, I'll create a new PR for that :) it's getting a bit messy in this one already. |
In this pull request, I present my implementation of a pseudo-random number generator (PRNG) utilizing the AES-CTR (Advanced Encryption Standard - Counter mode) in 128-bit mode. This implementation is designed to produce high-quality random numbers, which are essential for a wide range of cryptographic applications. By integrating with the OpenSSL library and exploiting AES-NI (Advanced Encryption Standard New Instructions) hardware acceleration when available, I ensure both the security and efficiency of the random number generation process. It provides the highest-quality of PRNGs yet for NWIPE, and is a CSPRNG.
Key Features:
Implementation Details:
This PRNG implementation stands as a robust and efficient tool for generating high-quality pseudo-random numbers, crucial for cryptographic operations, secure communications, and randomized algorithms. The combination of AES-CTR mode, OpenSSL's reliability, and the performance benefits of AES-NI hardware acceleration results in a superior random number generator.
I have ensured that the implementation is well-documented with clear comments, making it accessible for review, understanding, and maintenance, following best practices in both software development and cryptographic standards.
I look forward to receiving feedback on this pull request to further improve and ensure the effectiveness of the PRNG implementation.
Test of randomness:
NIST Test Suite:
SmallCrush Test: