Re: [kernel-hardening] Re: [PATCH v4 06/13] iscsi: ensure RNG is seeded before use

From: Jason A. Donenfeld
Date: Fri Jun 16 2017 - 20:41:49 EST

Next message: Rafael J. Wysocki: "Re: [PATCH 3/5] intel_pstate: remove intel_pstate.get()"
Previous message: Jason A. Donenfeld: "Re: [PATCH] random: silence compiler warnings and fix race"
In reply to: Lee Duncan: "Re: [kernel-hardening] Re: [PATCH v4 06/13] iscsi: ensure RNG is seeded before use"
Next in thread: Lee Duncan: "Re: [kernel-hardening] Re: [PATCH v4 06/13] iscsi: ensure RNG is seeded before use"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hi Lee,

On Fri, Jun 16, 2017 at 11:58 PM, Lee Duncan <lduncan@xxxxxxxx> wrote:
> It seems like what you are doing is basically "good", i.e. if there is
> not enough random data, don't use it. But what happens in that case? The
> authentication fails? How does the user know to wait and try again?

The process just remains in interruptible (kill-able) sleep until
there is enough entropy, so the process doesn't need to do anything.
If the waiting is interrupted by a signal, it returns -ESYSRESTART,
which follows the usual semantics of restartable syscalls.

Jason

Next message: Rafael J. Wysocki: "Re: [PATCH 3/5] intel_pstate: remove intel_pstate.get()"
Previous message: Jason A. Donenfeld: "Re: [PATCH] random: silence compiler warnings and fix race"
In reply to: Lee Duncan: "Re: [kernel-hardening] Re: [PATCH v4 06/13] iscsi: ensure RNG is seeded before use"
Next in thread: Lee Duncan: "Re: [kernel-hardening] Re: [PATCH v4 06/13] iscsi: ensure RNG is seeded before use"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]