|
|
Subscribe / Log in / New account

Fixing getrandom()

Fixing getrandom()

Posted Sep 30, 2019 11:57 UTC (Mon) by patrakov (subscriber, #97174)
In reply to: Fixing getrandom() by joib
Parent article: Fixing getrandom()

Yes, but with a few phrases in the commit message that I not necessarily agree with (or maybe should interpret as sarcasm, because then it makes perfect sense). Let me quote the problematic sentence.

"""
While this was triggered by what is arguably a user space bug with GDM/gnome-session asking for secure randomness during early boot, when they didn't even need any such truly secure thing, the issue ends up being that our "getrandom()" interface is prone to that kind of confusion, because people don't think very hard about whether they want to block for sufficient amounts of entropy.
"""

If things as late as GDM/gnome-session are still "early boot", then which service does not count as early boot? See the problem?

to post comments

Fixing getrandom()

Posted Sep 30, 2019 13:19 UTC (Mon) by Otus (subscriber, #67685) [Link]

> If things as late as GDM/gnome-session are still "early boot", then which service does not count as early boot? See the problem?

From the point of view of the random pools, before this change, anything before the user gets a login screen is early boot. That's when you start getting more than a trickle of entropy.

Fixing getrandom()

Posted Oct 1, 2019 2:46 UTC (Tue) by NYKevin (subscriber, #129325) [Link]

Well, if that's too early, that means you're plausibly running all kinds of nonsense, like Python.


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds