On Sun, Jul 03, 2016 at 06:44:22PM +0200, Denys Vlasenko wrote: > On Tue, Jun 28, 2016 at 6:56 PM, Etienne CHAMPETIER > <champetier.etie...@gmail.com> wrote: > > first user of this applet will be LEDE (OpenWrt) to save an urandom seed > > using getrandom() (so we are sure /dev/urandom pool is initialized) > > > Please be more specific which task you want to achieve with this tool. > > I googled for this name and no such tool exists (yet?) in distros, > I hesitate to introduce a new tool and then have an API collision > when they add something similar. > > BTW, I know that security people would scream bloody murder, > but wouldn't > > cd /proc && cat cpuinfo meminfo stat interrupts diskstats slabinfo > schedstat buddyinfo >/dev/random > > in practice work quite satisfactorily for adding some entropy at boot time? > If you don't think so, can you demonstrate a setup where the output is > predictable?
Probably at most a few bits on SoCs without unpredictable peripherals involved. I could try running some tests on single-core J2 when I get a chance, but I would not expect this approch to be suitable for anything where you depend on the output being secret/unpredictable. Rich _______________________________________________ busybox mailing list busybox@busybox.net http://lists.busybox.net/mailman/listinfo/busybox
