Re: [PATCH] random: mix all saved registers into entropy pool

[Andi Kleen]

> 
> I think leaking of private keys or similar information is not a
> concern.  But please prove me wrong.  Better you now than someone else
> later.

While I don't have a concrete exploit it seems seems dangerous to me. 
The LibreSSL people just removed a similar behavior from OpenSSL.

-Andi
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/