Re: Linux messages full of `random: get_random_u32 called from`
From: Theodore Y. Ts'o
Date: Tue Apr 24 2018 - 09:56:32 EST
On Tue, Apr 24, 2018 at 01:48:16PM +0200, Paul Menzel wrote:
> Dear Linux folks,
> Since Linux 4.17-rcX, Linux spams a lot of `random: get_random_u32 called
> from` messages. I believe, this setting should be reverted by default as
> otherwise a lot of other messages are not seen.
Can you tell me a bit about your system? What distribution, what
hardware is present in your sytsem (what architecture, what
peripherals are attached, etc.)?
There's a reason why we made this --- we were declaring the random
number pool to be fully intialized before it really was, and that was
a potential security concern. It's not as bad as the weakness
discovered by Nadia Heninger in 2012. (See https://factorable.net for
more details.) However, this is not one of those things where we like
to fool around.
So I want to understand if this is an issue with a particular hardware
configuration, or whether it's just a badly designed Linux init system
or embedded setup, or something else. After all, you wouldn't want
the NSA spying on all of your network traffic, would you? :-)