On Tue, 19 Apr 2022 12:24:05 +0200 "Jason A. Donenfeld" <ja...@zx2c4.com> wrote:
> On Tue, Apr 19, 2022 at 11:33 AM Bernhard Reutner-Fischer > <rep.dot....@gmail.com> wrote: > > I was not refering to the startup scripts but to the possibility that > > we read data from the path /dev/random, close the fd and only later > > open it again for issuing the ioctl. The first read could easily hit a > > file with e.g. c 1 5, i.e. zero to inject non-random data into the pool. > > This would be avoided if we'd open random only once (and even ensure it > > really is the random chardev) and issue the ioctl on this very fd. > > If an unprivileged process can modify files in /dev, all bets are off. If you consider all this a non-issue then the stat does make no sense and we can ignore the possibility that the device files changes from under us, sure. thanks, _______________________________________________ busybox mailing list busybox@busybox.net http://lists.busybox.net/mailman/listinfo/busybox
