Re: use of RDRAND in $random_library

To: debian-devel@lists.debian.org
Subject: Re: use of RDRAND in $random_library
From: Guillem Jover <guillem@debian.org>
Date: Thu, 12 Jun 2014 22:04:21 +0200
Message-id: <[🔎] 20140612200421.GA7416@pulsar.hadrons.org>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] 20140612191906.GA9124@roeckx.be>
References: <[🔎] 20140611165859.GA15063@kitenet.net> <[🔎] 20140611224541.GA12701@jtriplet-mobl1> <[🔎] alpine.DEB.2.10.1406121014170.17794@tglase.lan.tarent.de> <[🔎] 20140612191906.GA9124@roeckx.be>

Hi!

On Thu, 2014-06-12 at 21:19:06 +0200, Kurt Roeckx wrote:
> On Thu, Jun 12, 2014 at 10:23:58AM +0200, Thorsten Glaser wrote:
> > On Wed, 11 Jun 2014, Josh Triplett wrote:
> > 
> > device is inferiour to the random devices on OpenBSD/MirBSD, so you
> > should seed the aRC4 state with additional random bytes:
> 
> As far as I know, OpenBSD stopped using (A)RC4 for their random
> number generation for good reason, even though the function is
> still called that way.  You now seems to suggest to use RC4 again,
> which seems like a bad idea to me.

For the next libbsd upstream release I'm planning on pulling the
implementation from OpenBSD, as I saw mentioned in a previous thread
here on d-d, and afterwards submitted as a bug report.

Thanks,
Guillem

Reply to:

References:
- use of RDRAND in $random_library
  - From: Joey Hess <joeyh@debian.org>
- Re: use of RDRAND in $random_library
  - From: Josh Triplett <josh@joshtriplett.org>
- Re: use of RDRAND in $random_library
  - From: Thorsten Glaser <tg@mirbsd.org>
- Re: use of RDRAND in $random_library
  - From: Kurt Roeckx <kurt@roeckx.be>

Prev by Date: Re: holes in secure apt
Next by Date: Re: use of RDRAND in $random_library
Previous by thread: Re: use of RDRAND in $random_library
Next by thread: Re: use of RDRAND in $random_library
Index(es):
- Date
- Thread