Re: /dev/random is hot garbage

To: Taylor R Campbell <campbell+netbsd-tech-kern%mumble.net@localhost>
Subject: Re: /dev/random is hot garbage
From: David Holland <dholland-tech%netbsd.org@localhost>
Date: Sun, 21 Jul 2019 19:31:16 +0000

On Sun, Jul 21, 2019 at 07:20:08PM +0000, Taylor R Campbell wrote:
 > > /dev/randon actually works as documented and if rust wants /dev/urandom
 > > behavior it should use /dev/urandom. Also I'd like to get explained why
 > > a compiler needs that much random bits.
 > 
 > The difference is that /dev/random may block, and if it blocks, it
 > doesn't wake up until the entropy pool is seeded.  In contrast,
 > /dev/urandom never blocks, even if the entropy pool has not yet been
 > seeded.
 > 
 > There is no reason in modern cryptography to read more than one byte
 > from /dev/random ever in a single application; once you have done
 > that, or confirmed some other way that the the entropy pool is seeded,
 > you should generate keys from /dev/urandom.

There should be some way to do that without throwing away 8 random
bits.

 > This is _locally_ sensible for a library that may have many users
 > beyond a compiler.

No, not really; it's the system's responsibility.


-- 
David A. Holland
dholland%netbsd.org@localhost

Follow-Ups:
- Re: /dev/random is hot garbage
  - From: Edgar Fuß

References:
- Re: /dev/random is hot garbage
  - From: Manuel Bouyer
- Re: /dev/random is hot garbage
  - From: Taylor R Campbell

Prev by Date: Re: /dev/random is hot garbage
Next by Date: Re: /dev/random is hot garbage
Previous by Thread: Re: /dev/random is hot garbage
Next by Thread: Re: /dev/random is hot garbage
Indexes:

Home | Main Index | Thread Index | Old Index