Re: /dev/random broken?

From: Valdis.Kletnieks@vt.edu
Date: Sat Jun 28 2003 - 21:36:04 EST

Next message: Martin J. Bligh: "Re: 2.5.73-mm2"
Previous message: Robert Love: "Re: /dev/random broken?"
In reply to: Justin Pryzby: "Re: /dev/random broken?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Sat, 28 Jun 2003 19:10:18 PDT, Justin Pryzby said:
> /dev/urandom is what you want; it makes up its own entropy. /dev/random
> uses entropy from user input (low order bits I imagine).

Strictly speaking, urandom doesn't "make up" any entropy - it generates
a pseudorandom stream of bits of arbitrary length using a small chunk of
entropy from the entropy pool. That's why it's able to generate multi-megabyte
streams of bits even when the entropy pool is empty - it is generating a
fixed but unpredictable stream based on the initial entropy.

The distinction is important mostly to cryptographers - for almost all
practical uses, the pseudorandom stream of bits produced by urandom
is quite sufficient, much faster, and leaves the entropy pool untouched
for those applications that *do* care about the difference....

application/pgp-signature attachment: stored

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Martin J. Bligh: "Re: 2.5.73-mm2"
Previous message: Robert Love: "Re: /dev/random broken?"
In reply to: Justin Pryzby: "Re: /dev/random broken?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b29 : Mon Jun 30 2003 - 22:00:30 EST