Re: getrandom and getentropy

To: tech-userlevel%NetBSD.org@localhost
Subject: Re: getrandom and getentropy
From: Martin Husemann <martin%duskware.de@localhost>
Date: Thu, 14 May 2020 16:08:44 +0200

On Thu, May 14, 2020 at 03:12:13PM +0200, Joerg Sonnenberger wrote:
> I'd strongly argue that the only category where it really matters
> potentially are long term key generators. I would at the same time
> consider creating the ssh host keys as part of sysinst, but that's
> already setting up the seed file handling too.

Note that with -current and assuming you are not on quite new x86 machines
the seed file will record 0 bits of entropy. This is why we talked about
alternative/manual ways to get entropy on the installed machine.

Of course if you pluged in your nice ualea during installation, all will
be fine (which is why I enabled it by default yesterday).

Martin
P.S.: I have realy quite a lot of (very different) machines here and
found four(!) so far that have a TRNG build in (three out of five
amd64, one mips [erlite3]).

References:
- Re: getrandom and getentropy
  - From: Andreas Gustafsson
- Re: getrandom and getentropy
  - From: nia
- Re: getrandom and getentropy
  - From: Andreas Gustafsson
- Re: getrandom and getentropy
  - From: nia
- Re: getrandom and getentropy
  - From: Andreas Gustafsson
- Re: getrandom and getentropy
  - From: Joerg Sonnenberger
- Re: getrandom and getentropy
  - From: Andreas Gustafsson
- Re: getrandom and getentropy
  - From: Joerg Sonnenberger
- Re: getrandom and getentropy
  - From: Andreas Gustafsson
- Re: getrandom and getentropy
  - From: Joerg Sonnenberger

Prev by Date: Re: getrandom and getentropy
Next by Date: Re: getrandom and getentropy
Previous by Thread: Re: getrandom and getentropy
Next by Thread: Re: getrandom and getentropy
Indexes:

Home | Main Index | Thread Index | Old Index