Date: Sat, 19 Jul 2014 21:47:12 +0100 From: Steven Chamberlain <steven@pyro.eu.org> To: Konstantin Belousov <kostikbel@gmail.com>, freebsd-security@freebsd.org Subject: Re: Speed and security of /dev/urandom Message-ID: <53CAD950.1010609@pyro.eu.org> In-Reply-To: <20140719192605.GV93733@kib.kiev.ua> References: <53C85F42.1000704@pyro.eu.org> <20140719190348.GM45513@funkthat.com> <20140719192605.GV93733@kib.kiev.ua>
next in thread | previous in thread | raw e-mail | index | archive | help
This is an OpenPGP/MIME signed message (RFC 4880 and 3156) --hLvdpv21lS3oPbUFC8JOBeBsopI815V9j Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable On 19/07/14 20:26, Konstantin Belousov wrote: > I think that using sysctl for non-management functionality is wrong. > If this feature is for the libraries and applications, and not for > system management and introspection utilities, it should be normal > syscall. If this is only to seed the arc4random in userland (with ~256 bytes or so), it would be just like OpenBSD getentropy(2)? Just yesterday, something very similar is proposed for Linux, called getrandom(2): http://lists.openwall.net/linux-kernel/2014/07/18/329 Regards, --=20 Steven Chamberlain steven@pyro.eu.org --hLvdpv21lS3oPbUFC8JOBeBsopI815V9j Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.12 (GNU/Linux) Comment: Using GnuPG with Icedove - http://www.enigmail.net/ iQEcBAEBCAAGBQJTytlQAAoJEJeL0N0LpZiv26QH/0C0p1mNsDlmPGRqZoUplWci RpoVLaL1UA2eXNWDwekv3muaRmVj4HhIUmS1MxbaOB25UaOcSl4opzl5EfGQbUAu IxTjOJCZ7IZxFgCRSCv146QBeZc9xhIic43wo9pH7MLSjew5x4PSyhQHl1CTnECl Sp/XJbuLkqdbNieWRmJDOeIQjQSHG+HOBpO6AlnjhVx7ndgxQXqcWfEqOhu9zYNd Rh0lY4NGcjspqqFmcPctB0SOpD0WQl2LkgIUSJyKlBusb2sVkkL039Rs1iiru5lI RmvZWAUtvRGfdNtZAtFYP2Yhba7le+iwvURlYn4P3k6p6ITM0aF58ztU+6443uM= =pnnz -----END PGP SIGNATURE----- --hLvdpv21lS3oPbUFC8JOBeBsopI815V9j--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?53CAD950.1010609>