Received: by 10.192.165.148 with SMTP id m20csp2812690imm; Sun, 29 Apr 2018 07:33:55 -0700 (PDT) X-Google-Smtp-Source: AB8JxZp3/p8sJycCTrI8gmE7vw9xh9Nd8eff0n7vR7z/6vI5Khx6NzCm6z4tRh313TXG6KATP5Th X-Received: by 2002:a63:7258:: with SMTP id c24-v6mr7813535pgn.453.1525012434993; Sun, 29 Apr 2018 07:33:54 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1525012434; cv=none; d=google.com; s=arc-20160816; b=ZREH9FgACUYI5nSV7rfyf+TMGke4eV8VCo2ecCOUggJ2g/2+Rv68kKdKXtZVqbsMuh 1scuw9dOCoOOJ2OEuAq9j2d05niDswSo6hSjiX61eabwfmKIWh8covm7fdYtuNqlVdho tqxFNLegS89DvPHJ2c4f919KmCywqK1oiuF5fJwfzOVNh9pHpNNhmaDlK9eprbzfqjEg 2yluTSWmhu9NmMyA5LiFFke0v7Qy4m3CcMnuDkq3rDN02in9E7BUXlBpJ7QUSkvNojjS tilvE4Gvnm5dbAGGHyG+XqYAigeV68aylRWNFm+lt74VdZn3ajGMg19AkR4Xx5NURlBN ETaw== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:sender:user-agent:in-reply-to :content-disposition:mime-version:references:message-id:subject:to :from:date:arc-authentication-results; bh=WVd/lfaqs9o5JvymSy0Tz/Mua29wLorFFv+zALp+79s=; b=HCAqkUfkBY8XAvWAE3ukHsKJvhQF/SZ/2d5N47orWCaOS1gp6eScCJvIi/k0LQyyhA 2dR5GKwvAqrmx79CjbSmxmGsWfJW7SjG9r8pJ45k5MJWXh2EB1JImSedh2tLP006tFdO UXOZpASMMUJxbrCGvfV/HkWD8A0MhroINRkD5TrJlRii4V+AvBz+OX2G8A7bGjaxXUeN 2j1+hkuq/F8fCoAwH12zMsn5o2ItN91z1+Bj8FFxMPkq6eDpImPDuQUyIWmzSUHf1H7q d4FpUmrw3ksFvcdZh2wJ3OSZb6iU0zwxSrLXHWc2DjpoNY7A0SuAQuzgxGg8qpDmMv8z +/Ng== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Return-Path: Received: from vger.kernel.org (vger.kernel.org. [209.132.180.67]) by mx.google.com with ESMTP id x7-v6si4862506pge.559.2018.04.29.07.33.41; Sun, 29 Apr 2018 07:33:54 -0700 (PDT) Received-SPF: pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) client-ip=209.132.180.67; Authentication-Results: mx.google.com; spf=pass (google.com: best guess record for domain of linux-kernel-owner@vger.kernel.org designates 209.132.180.67 as permitted sender) smtp.mailfrom=linux-kernel-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S1753634AbeD2OcI (ORCPT + 99 others); Sun, 29 Apr 2018 10:32:08 -0400 Received: from atrey.karlin.mff.cuni.cz ([195.113.26.193]:52369 "EHLO atrey.karlin.mff.cuni.cz" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S1753549AbeD2OcH (ORCPT ); Sun, 29 Apr 2018 10:32:07 -0400 Received: by atrey.karlin.mff.cuni.cz (Postfix, from userid 512) id 116838044C; Sun, 29 Apr 2018 16:32:05 +0200 (CEST) Date: Sun, 29 Apr 2018 16:32:05 +0200 From: Pavel Machek To: "Theodore Y. Ts'o" , Sultan Alsawaf , linux-kernel@vger.kernel.org, Jann Horn Subject: Re: Linux messages full of `random: get_random_u32 called from` Message-ID: <20180429143205.GD13475@amd> References: <20180426050056.GF18803@thunk.org> <20180426073255.GH18803@thunk.org> <20180426192524.GD5965@thunk.org> <2add15cb-2113-0504-a732-81255ea61bf5@gmail.com> <20180426235630.GG5965@thunk.org> <3eb5761e-7b25-4178-0560-fba5eb43ce6a@gmail.com> <20180427201036.GL5965@thunk.org> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="76DTJ5CE0DCVQemd" Content-Disposition: inline In-Reply-To: <20180427201036.GL5965@thunk.org> User-Agent: Mutt/1.5.23 (2014-03-12) Sender: linux-kernel-owner@vger.kernel.org Precedence: bulk List-ID: X-Mailing-List: linux-kernel@vger.kernel.org --76DTJ5CE0DCVQemd Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable Hi! > This is why ultimately, we do need to attack this problem from both > ends, which means teaching userspace programs to only request > cryptographic-grade randomness when it is really needed --- and most > of the time, if the user has not logged in yet, you probably don't > need cryptographic-grade randomness.... IOW moving them from /dev/random to /dev/urandom? Pavel --=20 (english) http://www.livejournal.com/~pavelmachek (cesky, pictures) http://atrey.karlin.mff.cuni.cz/~pavel/picture/horses/blo= g.html --76DTJ5CE0DCVQemd Content-Type: application/pgp-signature; name="signature.asc" Content-Description: Digital signature -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iEYEARECAAYFAlrl12UACgkQMOfwapXb+vJc+QCbBaNKQIZdhqW6fRlaQWm6VMCh y44AoKYo1rwzjyH0CNAyMkojLSu4kUg7 =BUwT -----END PGP SIGNATURE----- --76DTJ5CE0DCVQemd--