Control: tags -1 pending Hello,
On Fri, Aug 17, 2018 at 08:03:41PM +0200, Paul Gevers wrote:
Hi Vincent, On 16-08-18 16:52, Vincent Blut wrote:I was aware of this issue but I refrained from backporting 7c5bd948bb7e (util: fall back to reading /dev/urandom when getrandom() blocks) as like you said, nobody sent me a bug report, neither publicly nor privately, about this issue. However your bug report clearly shows that this problem has to be taken seriously. I’ll work on this on the weekend, hope that’s ok?Quote I read today: Linux 4.16 fixed CVE-2018-1108 by making the getrandom system call (without GRND_NONBLOCK) block if insufficient entropy is available. This causes applications to hang. Maybe this is the reason.
Absolutely Paul, this is the root cause of our issue. I pushed a fix¹ on salsa (plus a few more things), that would be great if you could upload that.
Paul
Thanks, Vincent ¹ https://salsa.debian.org/debian/chrony/commit/c7b83da8d07cb0021b17502b520c04914a62b1af
signature.asc
Description: PGP signature
