Re: getrandom and getentropy

To: tech-userlevel%NetBSD.org@localhost
Subject: Re: getrandom and getentropy
From: Joerg Sonnenberger <joerg%bec.de@localhost>
Date: Tue, 12 May 2020 17:01:05 +0200

On Tue, May 12, 2020 at 04:59:52PM +0300, Andreas Gustafsson wrote:
> I don't particularly care if we require 100 or 384 bits of estimated
> entropy, nor do I particularly care if the entropy estimate of a
> keystroke timestamp is 0 or 1 bit.  But I do very much care that if I
> accidentally try to generate an ssh key on a system that has no
> entropy at all, it must not succeed.

Once more and alone and maybe it will sink in:

    There is no reasonable way to estimate system entropy. 

Please think what that statement means. Consider for fun emulating a 20
year old computer with a deterministic high precision model keeping all
storage in memory. There is no source of entropy in such a system and no
way for the emulation to tell.

Joerg

Follow-Ups:
- Re: getrandom and getentropy
  - From: Andreas Gustafsson
- Re: getrandom and getentropy
  - From: Michael van Elst

References:
- Re: getrandom and getentropy
  - From: Andreas Gustafsson
- Re: getrandom and getentropy
  - From: Taylor R Campbell
- Re: getrandom and getentropy
  - From: Andreas Gustafsson
- Re: getrandom and getentropy
  - From: nia
- Re: getrandom and getentropy
  - From: Andreas Gustafsson
- Re: getrandom and getentropy
  - From: nia
- Re: getrandom and getentropy
  - From: Andreas Gustafsson
- Re: getrandom and getentropy
  - From: nia
- Re: getrandom and getentropy
  - From: Andreas Gustafsson

Prev by Date: Re: getrandom and getentropy
Next by Date: RE: getrandom and getentropy
Previous by Thread: Re: getrandom and getentropy
Next by Thread: Re: getrandom and getentropy
Indexes:

Home | Main Index | Thread Index | Old Index