Re: Why does reading from /dev/urandom deplete entropy so much?

---

• From: Theodore Tso <tytso@xxxxxxx>
• Date: Tue, 4 Dec 2007 14:50:21 -0500

---

On Tue, Dec 04, 2007 at 12:02:37PM -0600, Matt Mackall wrote:

On Tue, Dec 04, 2007 at 04:55:02PM +0000, Alan Cox wrote:

cryptographically strong stream it'll provide when /dev/random is
tapped? In principle, this'd leave more entropy available for
applications that really need it, especially on platforms that don't
generate a lot of entropy in the first place (servers).

As reported about a month ago, the evidence is that the /dev/random
stream is not cryptographically strong. Collecting uuids generated from
the kernel uuid random generator from the random generator in the kernel
shows abnormal patterns of duplicates.

Pointer, please.

Alan, are you sure you're not talking about Helge Deller's attempt to
push a Time-based UUID generator into the kernel because you can get
duplicates from the current userspace library?

I've not heard of *any* claim where the kernel uuid random generator
has been returning duplicates.

- Ted

P.S. Probably the right approach for Helge is to create a daemon
started at boot time with privileges to write the appropriate state
file to prevent duplicates across reboots, and then to change the uuid
library to use the daemon if it is available (accessed via a Unix
domain socket), or to use its existing algorithm (which is fine unless
you have multiple threads wanting to generate large numbers of UUIDs
per second in parallel), and you want to use time-based UUID's because
they have better b-tree characteristics when you use them as indexes
into a database.
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

---

• Follow-Ups:
  • Re: Why does reading from /dev/urandom deplete entropy so much?
    • From: Alan Cox
  • Re: Why does reading from /dev/urandom deplete entropy so much?
    • From: Matt Mackall

• References:
  • Why does reading from /dev/urandom deplete entropy so much?
    • From: Marc Haber
  • Re: Why does reading from /dev/urandom deplete entropy so much?
    • From: Adrian Bunk
  • Re: Why does reading from /dev/urandom deplete entropy so much?
    • From: Ray Lee
  • Re: Why does reading from /dev/urandom deplete entropy so much?
    • From: Alan Cox
  • Re: Why does reading from /dev/urandom deplete entropy so much?
    • From: Matt Mackall

• Prev by Date: Re: [Bug 9246] On 2.6.24-rc1-gc9927c2b BUG: unable to handle kernel paging request at virtual address 3d15b925
• Next by Date: Re: [patch] rewrite rd
• Previous by thread: Re: Why does reading from /dev/urandom deplete entropy so much?
• Next by thread: Re: Why does reading from /dev/urandom deplete entropy so much?
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: Why does reading from /dev/urandom deplete entropy so much? ... generate a lot of entropy in the first place. ... the kernel uuid random generator from the random generator in the kernel ... shows abnormal patterns of duplicates. ... I've not heard of *any* claim where the kernel uuid random generator ... (Linux-Kernel) Re: Concurrent access to /dev/urandom ... I wrote my own "version-4" UUID generator that reads ... This test does not represent the typical usage of my UUID ... I get duplicates so quickly that I am very concerned ... I will also try your patch. ... (Linux-Kernel) Re: Why does reading from /dev/urandom deplete entropy so much? ... has been returning duplicates. ... The Fedora tools use a kernel random uuid for system identifiers (to ... preserve anonymity while allowing system profiles etc to be generated and ... (Linux-Kernel)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• Mailing-Lists
• Newsgroups
• About
• Privacy
• Search
• Imprint

linux.derkeiler.com  > Mailing-Lists  > Kernel  > 2007-12