[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #13696 [Tor]: Use syscall-based entropy reading where possible.

Subject: Re: [tor-bugs] #13696 [Tor]: Use syscall-based entropy reading where possible.
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Sat, 28 Nov 2015 12:54:48 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Sat, 28 Nov 2015 07:54:58 -0500
In-reply-to: <045.a9b10d78436d30d03cb97235b442019a@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <045.a9b10d78436d30d03cb97235b442019a@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#13696: Use syscall-based entropy reading where possible.
-------------------------+--------------------------------
 Reporter:  nickm        |          Owner:  yawning
     Type:  enhancement  |         Status:  needs_revision
 Priority:  Medium       |      Milestone:  Tor: 0.2.???
Component:  Tor          |        Version:
 Severity:  Normal       |     Resolution:
 Keywords:  tor-relay    |  Actual Points:
Parent ID:               |         Points:
  Sponsor:               |
-------------------------+--------------------------------

Comment (by teor):

 Replying to [comment:13 teor]:
 > * /dev/random
 >   * sandboxed on iOS
 >     * source: https://www.mikeash.com/pyblog/friday-qa-2011-03-18
 -random-numbers.html#comment-3e4213b49fef1f45568897721e7ad921
 >     * I wonder what tor / OpenSSL does on iOS at the moment - does it
 have very poor randomness because reading /dev/random fails?

 Apparently this source is wrong, at least for modern iOS versions: iOS
 apps can read from /dev/random. (Which makes sense, as it's impossible to
 seed a CSRNG from /dev/random unless you can read from /dev/random. Unless
 there was some weird xpc / syscall trickery to a privileged process or the
 kernel.)

 I'm still ok with implementing the call to SecRandomCopyBytes on OS X /
 iOS, because it has better semantics (lower failure rate).

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/13696#comment:14>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #17127 [Tor]: Fix and re-enable --master-key option, possibly --out (for keys) and possibly --nopass for non-interactive key generation (was: Fix and re-enable --master-key option and possibly --out (for keys))
Next by Author: [tor-bugs] #17718 [Tor Browser]: About:config values need changing
Previous by thread: Re: [tor-bugs] #13696 [Tor]: Use syscall-based entropy reading where possible.
Next by thread: Re: [tor-bugs] #13696 [Tor]: Use syscall-based entropy reading where possible.
Index(es):
- Author
- Thread