Home » Mailing list archives » linux-kernel » 2007 » December » 6

Re: Why does reading from /dev/urandom deplete entropy so much?

Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]
[view in full thread]
From: Bill Davidsen
Subject: Re: Why does reading from /dev/urandom deplete entropy so much?
Date: Thursday, December 6, 2007 - 12:32 pm

Adrian Bunk wrote:

I don't see that he is proposing to change the interface, just how it 
gets the data it provides. Any program which depends on the actual data 
values it gets from urandom is pretty broken, anyway. I think that 
getting some entropy from network is a good thing, even if it's used 
only in urandom, and I would like a rational discussion of checking the 
random pool available when urandom is about to get random data, and 
perhaps having a lower and upper bound for pool size.

That is, if there is more than Nmax random data urandom would take some, 
if there was less than Nmin it wouldn't, and between them it would take 
data, but less often. This would improve the urandom quality in the best 
case, and protect against depleting the /dev/random entropy in low 
entropy systems. Where's the downside?

There has also been a lot of discussion over the years about improving 
the quality of urandom data, I don't personally think making the quality 
higher constitutes "changing a 12 years old and widely used userspace 
interface like /dev/urandom" either.

Sounds like a local DoS attack point to me...

-- 
Bill Davidsen <davidsen@tmr.com>
   "We have more to fear from the bungling of the incompetent than from
the machinations of the wicked."  - from Slashdot
--
Previous message: [thread] [date] [author]
Next message: [thread] [date] [author]
Messages in current thread:
Why does reading from /dev/urandom deplete entropy so much?, Marc Haber, (Tue Dec 4, 4:41 am)
Re: Why does reading from /dev/urandom deplete entropy so ..., Eric Dumazet, (Tue Dec 4, 7:16 am)
Re: Why does reading from /dev/urandom deplete entropy so ..., Adrian Bunk, (Tue Dec 4, 9:18 am)
Re: Why does reading from /dev/urandom deplete entropy so ..., Alan Cox, (Tue Dec 4, 9:47 am)
Re: Why does reading from /dev/urandom deplete entropy so ..., Ray Lee, (Tue Dec 4, 9:54 am)
Re: Why does reading from /dev/urandom deplete entropy so ..., Alan Cox, (Tue Dec 4, 9:55 am)
Re: Why does reading from /dev/urandom deplete entropy so ..., Matt Mackall, (Tue Dec 4, 11:01 am)
Re: Why does reading from /dev/urandom deplete entropy so ..., Eric Dumazet, (Tue Dec 4, 11:17 am)
Re: Why does reading from /dev/urandom deplete entropy so ..., Theodore Tso, (Tue Dec 4, 12:50 pm)
Re: Why does reading from /dev/urandom deplete entropy so ..., Matt Mackall, (Tue Dec 4, 1:36 pm)
Re: Why does reading from /dev/urandom deplete entropy so ..., Alan Cox, (Tue Dec 4, 1:40 pm)
Re: Why does reading from /dev/urandom deplete entropy so ..., Mike McGrath, (Tue Dec 4, 1:48 pm)
Re: Why does reading from /dev/urandom deplete entropy so ..., Matt Mackall, (Tue Dec 4, 2:08 pm)
Re: Why does reading from /dev/urandom deplete entropy so ..., Mike McGrath, (Tue Dec 4, 2:18 pm)
Re: Why does reading from /dev/urandom deplete entropy so ..., Theodore Tso, (Tue Dec 4, 3:03 pm)
Re: Why does reading from /dev/urandom deplete entropy so ..., Mike McGrath, (Tue Dec 4, 3:12 pm)
Re: Why does reading from /dev/urandom deplete entropy so ..., Mike McGrath, (Tue Dec 4, 3:23 pm)
Re: Why does reading from /dev/urandom deplete entropy so ..., Matt Mackall, (Tue Dec 4, 3:33 pm)
Re: Why does reading from /dev/urandom deplete entropy so ..., Marc Haber, (Wed Dec 5, 5:23 am)
Re: Why does reading from /dev/urandom deplete entropy so ..., Marc Haber, (Wed Dec 5, 5:29 am)
Re: Why does reading from /dev/urandom deplete entropy so ..., Theodore Tso, (Wed Dec 5, 6:33 am)
Re: Why does reading from /dev/urandom deplete entropy so ..., Mike McGrath, (Wed Dec 5, 7:26 am)
Re: Why does reading from /dev/urandom deplete entropy so ..., Theodore Tso, (Wed Dec 5, 7:49 am)
Re: Why does reading from /dev/urandom deplete entropy so ..., Marc Haber, (Wed Dec 5, 8:10 am)
Re: Why does reading from /dev/urandom deplete entropy so ..., Matt Mackall, (Wed Dec 5, 2:26 pm)
Re: Why does reading from /dev/urandom deplete entropy so ..., Eric Dumazet, (Thu Dec 6, 12:02 am)
Re: Why does reading from /dev/urandom deplete entropy so ..., Matt Mackall, (Thu Dec 6, 9:09 am)
Re: Why does reading from /dev/urandom deplete entropy so ..., Bill Davidsen, (Thu Dec 6, 12:32 pm)
Re: Why does reading from /dev/urandom deplete entropy so ..., Bill Davidsen, (Thu Dec 6, 1:08 pm)
Re: Why does reading from /dev/urandom deplete entropy so ..., Mike McGrath, (Sat Dec 8, 10:33 am)
Re: Why does reading from /dev/urandom deplete entropy so ..., Matt Mackall, (Sat Dec 8, 10:43 am)
Re: Why does reading from /dev/urandom deplete entropy so ..., Jon Masters, (Sat Dec 8, 10:45 am)
Re: Why does reading from /dev/urandom deplete entropy so ..., Jon Masters, (Sat Dec 8, 10:47 am)
Re: Why does reading from /dev/urandom deplete entropy so ..., Jon Masters, (Sat Dec 8, 10:54 am)
Re: Why does reading from /dev/urandom deplete entropy so ..., Theodore Tso, (Sat Dec 8, 11:05 am)
Re: Why does reading from /dev/urandom deplete entropy so ..., Matt Mackall, (Sat Dec 8, 11:15 am)
Re: Why does reading from /dev/urandom deplete entropy so ..., Jeff Garzik, (Sat Dec 8, 11:31 am)
Re: entropy gathering (was Re: Why does reading from /dev/ ..., Matt Mackall, (Sat Dec 8, 12:53 pm)
Re: entropy gathering (was Re: Why does reading from /dev/ ..., Jeff Garzik, (Sat Dec 8, 1:04 pm)
Re: entropy gathering (was Re: Why does reading from /dev/ ..., Matt Mackall, (Sat Dec 8, 1:19 pm)
RE: Why does reading from /dev/urandom deplete entropy so ..., David Schwartz, (Sat Dec 8, 1:26 pm)
Re: entropy gathering (was Re: Why does reading from /dev/ ..., Theodore Tso, (Sat Dec 8, 1:31 pm)
Re: entropy gathering (was Re: Why does reading from /dev/ ..., Willy Tarreau, (Sat Dec 8, 1:42 pm)
Re: entropy gathering (was Re: Why does reading from /dev/ ..., Jeff Garzik, (Sat Dec 8, 1:47 pm)
Re: entropy gathering (was Re: Why does reading from /dev/ ..., Willy Tarreau, (Sat Dec 8, 2:07 pm)
Re: Why does reading from /dev/urandom deplete entropy so ..., Adrian Bunk, (Sat Dec 8, 3:03 pm)
Re: Why does reading from /dev/urandom deplete entropy so ..., Ismail , (Sat Dec 8, 3:10 pm)
Re: Why does reading from /dev/urandom deplete entropy so ..., Theodore Tso, (Sat Dec 8, 4:46 pm)
Re: entropy gathering (was Re: Why does reading from /dev/ ..., Theodore Tso, (Sat Dec 8, 4:47 pm)
Re: entropy gathering (was Re: Why does reading from /dev/ ..., Jon Masters, (Sat Dec 8, 6:07 pm)
Re: Why does reading from /dev/urandom deplete entropy so ..., Willy Tarreau, (Sat Dec 8, 10:21 pm)
Re: Why does reading from /dev/urandom deplete entropy so ..., Ismail , (Sat Dec 8, 11:21 pm)
Re: Why does reading from /dev/urandom deplete entropy so ..., Jon Masters, (Sat Dec 8, 11:52 pm)
Re: Why does reading from /dev/urandom deplete entropy so ..., Theodore Tso, (Sun Dec 9, 5:31 am)
Re: Why does reading from /dev/urandom deplete entropy so ..., Matt Mackall, (Sun Dec 9, 9:16 am)
Re: Why does reading from /dev/urandom deplete entropy so ..., Pavel Machek, (Mon Dec 10, 9:37 am)
Re: Why does reading from /dev/urandom deplete entropy so ..., Matt Mackall, (Mon Dec 10, 4:35 pm)
Re: Why does reading from /dev/urandom deplete entropy so ..., Theodore Tso, (Mon Dec 10, 6:34 pm)
Re: Why does reading from /dev/urandom deplete entropy so ..., Bill Davidsen, (Tue Dec 11, 8:42 am)
Re: Why does reading from /dev/urandom deplete entropy so ..., Phillip Susi, (Tue Dec 11, 12:46 pm)
Re: Why does reading from /dev/urandom deplete entropy so ..., Ray Lee, (Tue Dec 11, 1:02 pm)
RE: Why does reading from /dev/urandom deplete entropy so ..., David Schwartz, (Tue Dec 11, 10:34 pm)
Re: Why does reading from /dev/urandom deplete entropy so ..., Marc Haber, (Thu Dec 20, 3:27 pm)