Skip to Content [alt-c]

Andrew Ayer


LibreSSL's PRNG is Unsafe on Linux [Update: LibreSSL fork fix]

Comment by Andrew Ayer

Posted in reply to Comment by Anonymous.

This comment is owned by whoever posted it. I am not responsible for it in any way.

Unsafe core files are only an issue if you use SIGABRT. SIGKILL leaves no core. While it's true that there's a certain degree of sketchiness inherent to any entropy gathering, the kernel has access to far better sources of entropy, like network traffic, disk latencies, and mouse movements, and bolsters it by mixing in a random seed that's carried over across reboots. getentropy_fallback does an impressive job considering the circumstances, but it's still not nearly as good as the kernel, and loses quite a bit of its effectiveness if a program is statically linked and addresses of functions are constant.

| Posted on 2014-07-15 at 15:17:54 UTC by Andrew Ayer | Parent | Reply to This

Post a Reply

Your comment will be public. If you would like to contact me privately, please email me. Please keep your comment on-topic, polite, and comprehensible. Use the "Preview" button to make sure your comment is properly formatted. Name and email address are optional. If you specify an email address it will be kept confidential.

Post Comment

(Optional; will be published)

(Optional; will not be published)

(Optional; will be published)

  • Blank lines separate paragraphs.
  • Lines starting with ">" are indented as block quotes.
  • Lines starting with two spaces are reproduced verbatim.
  • Text surrounded by *asterisks* is italicized.
  • Text surrounded by `back ticks` is monospaced.
  • URLs are turned into links.