Re: [PATCH] random: mix all saved registers into entropy pool
From: Andi Kleen
Date: Wed May 21 2014 - 15:39:15 EST
>
> I think leaking of private keys or similar information is not a
> concern. But please prove me wrong. Better you now than someone else
> later.
While I don't have a concrete exploit it seems seems dangerous to me.
The LibreSSL people just removed a similar behavior from OpenSSL.
-Andi
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/