[PATCH] getrandom: new applet

Etienne Champetier champetier.etienne at gmail.com
Tue Jul 5 20:38:18 UTC 2016


Hi Denys,

2016-07-05 22:08 GMT+02:00 Denys Vlasenko <vda.linux at googlemail.com>:
> On Tue, Jul 5, 2016 at 1:42 PM, Etienne Champetier
> <champetier.etienne at gmail.com> wrote:
>> not exactly, as i said in my mail of 29 june 2016 at 17:04:
>> you have
>> - /dev/urandom, which never block
>> - getrandom(), which block until /dev/urandom is properly initialized
>> (system wide), then never block again and read from /dev/urandom
>> - /dev/random, which only start it initialization after getrandom()
>> unblock, and block when it estimates entropy is low
>
> It's confusing. Why getrandom() unblocks sooner than /dev/random?
> From what I read, both are "cryptographically secure"
> and use the same entropy pool?

getrandom uses /dev/urandom pool, not /dev/random pool
See this great article
https://lwn.net/Articles/525459/


More information about the busybox mailing list