[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #10676 [Tor]: Verify urandom-style RNG is seeded before generating ID keys

Subject: Re: [tor-bugs] #10676 [Tor]: Verify urandom-style RNG is seeded before generating ID keys
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Fri, 21 Feb 2014 12:24:36 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 21 Feb 2014 07:24:46 -0500
In-reply-to: <045.24b3056662e29c25e97ca565710b0eae@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <045.24b3056662e29c25e97ca565710b0eae@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#10676: Verify urandom-style RNG is seeded before generating ID keys
-----------------------------+--------------------------------------------
     Reporter:  nickm        |      Owner:
         Type:  enhancement  |     Status:  needs_review
     Priority:  major        |  Milestone:  Tor: 0.2.5.x-final
    Component:  Tor          |    Version:
   Resolution:               |   Keywords:  tor-server rng urandom startup
Actual Points:               |  Parent ID:
       Points:               |
-----------------------------+--------------------------------------------

Comment (by user101):

 I think this relates to cypherpunks comment above and I don't have any
 references of my own handy, but it is not sufficient for /dev/random to
 *think* it has or has had entropy.  It has been shown that the "entropy"
 generated at bootup by many small, diskless  devices such as consumer
 grade "wireless routers" will tend to be similar between identical units,
 likely contributing to the problems noted in the factorable.net link in
 cyperpunks post.  This is related to, but not identical with, the problems
 noted in the Linux man page for /dev/random leading to the recommendation
 to carry entropy over across boots.  So somehow on these "limited entropy
 devices" you need to wait long enough for *real* entropy to be generated
 that will be sufficiently different from the "entropy" generated on other
 like devices.  /dev/random will *think* it has entropy long before this.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/10676#comment:10>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #9556 [Service - lists]: create tbb-commits@xxxxxxxxxxxxxxxxxxxx
Next by Author: Re: [tor-bugs] #9555 [Service - lists]: create tbb-bugs@xxxxxxxxxxxxxxxxxxxx
Previous by thread: Re: [tor-bugs] #10994 [Outreach]: Find a night venue for the 2014 summer dev. meeting
Next by thread: [tor-bugs] #10995 [Outreach]: Send Save-the-Date Email
Index(es):
- Author
- Thread