Re: get_random_bytes returns bad randomness before seeding is complete

From: Stephan Müller
Date: Sun Jun 04 2017 - 02:23:55 EST

Next message: Boris Lukashev: "Re: [kernel-hardening] Re: [PATCH v7 2/2] security: tty: make TIOCSTI ioctl require CAP_SYS_ADMIN"
Previous message: Noam Camus: "RE: [PATCH v2 08/11] ARC: [plat-eznps] spinlock aware for MTM"
In reply to: Jeffrey Walton: "Re: get_random_bytes returns bad randomness before seeding is complete"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Am Freitag, 2. Juni 2017, 16:59:56 CEST schrieb Jason A. Donenfeld:

Hi Jason,

> Alternatively, I'm open to other solutions people might come up with.

One addition, there is an issue (I would call it a bug) in random.c before 4.8
where the nonblocking_pool is not reseeded during early boot even though
entropy may be available. That issue aggravates early boot time entropy issues
for user and kernel land.

I have not heard about accepting or rejecting it, so I am wondering how
patches go into random.c at all.

[1] https://patchwork.kernel.org/patch/9620431/

Ciao
Stephan

Next message: Boris Lukashev: "Re: [kernel-hardening] Re: [PATCH v7 2/2] security: tty: make TIOCSTI ioctl require CAP_SYS_ADMIN"
Previous message: Noam Camus: "RE: [PATCH v2 08/11] ARC: [plat-eznps] spinlock aware for MTM"
In reply to: Jeffrey Walton: "Re: get_random_bytes returns bad randomness before seeding is complete"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]