Fixing getrandom()
Fixing getrandom()
Posted Sep 29, 2019 20:05 UTC (Sun) by NYKevin (subscriber, #129325)In reply to: Fixing getrandom() by walters
Parent article: Fixing getrandom()
I recommend clicking through to that bug report. This is more complicated than I had imagined, because in cases where people take images of live systems, you really shouldn't credit any "stored" entropy at all (because it's been duplicated umpteen times into other instances of the same image, so it's no longer unpredictable). But you can't know that someone imaged the system, so how do you square that circle?
Posted Sep 29, 2019 20:27 UTC (Sun)
by patrakov (subscriber, #97174)
[Link]
OTOH, jitter entropy will definitely help here, up to the point of making it completely unneeded to save entropy between reboots.
Fixing getrandom()
This is exactly why I say "don't". Too many bugs stem from our desire do achieve the impossible instead of giving up immediately.