[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-bugs] #13696 [Tor]: Use syscall-based entropy reading where possible.

Subject: Re: [tor-bugs] #13696 [Tor]: Use syscall-based entropy reading where possible.
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Thu, 26 Nov 2015 16:57:27 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Thu, 26 Nov 2015 11:57:36 -0500
In-reply-to: <045.a9b10d78436d30d03cb97235b442019a@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
References: <045.a9b10d78436d30d03cb97235b442019a@xxxxxxxxxxxxxx>
Reply-to: tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#13696: Use syscall-based entropy reading where possible.
-------------------------+--------------------------------
 Reporter:  nickm        |          Owner:  yawning
     Type:  enhancement  |         Status:  needs_revision
 Priority:  Medium       |      Milestone:  Tor: 0.2.???
Component:  Tor          |        Version:
 Severity:  Normal       |     Resolution:
 Keywords:  tor-relay    |  Actual Points:
Parent ID:               |         Points:
  Sponsor:               |
-------------------------+--------------------------------

Comment (by yawning):

 Replying to [comment:6 nickm]:
 >  * Have any other bsds grabbed getentropy() ?  Possibly we should check
 for it with autoconf rather than with #if directives.

 Done.

 >  * A part of me says that it would be smart to 0-fill the buffer before
 we call these functions, and then verify that they actually filled the
 buffer with something other than 0s. (Assuming that the buffer is of
 sufficient size)

 Done.  Opted to check if the buffer is still all zero for requests that
 are >= 128 bits, with 3 retries.  If teor or somebody write a better light
 weight statistical test we could use that since this shouldn't be critical
 path.

 >  * Maybe a comment should document what the 0 flags mean here.

 Done.

 >  * I don't think that a warn should be necessary if getrandom() returns
 ENOSYS.

 It only warns once, and I think it's a useful warning to have.  If people
 the binary with old kernel headers, the code won't get compiled in, and
 will never warn.  If people build the binary against kernel headers that
 don't match the actual running kernel, that's a problem.  I don't have
 extremely strong feelings about this though.

 >  * If we're doing `tor_assert(ret == (int)out_len);`, should we check
 for out_len rather than -1 in the loop?

 Hm.  Matter of taste?  The only time the assert will trigger is if the
 kernel people break userland, so I think it's an invariant.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/13696#comment:9>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #17701 [Metrics]: ExitList descriptor chokes on getUnrecognizedLines()
Next by Author: Re: [tor-bugs] #13696 [Tor]: Use syscall-based entropy reading where possible.
Previous by thread: Re: [tor-bugs] #13696 [Tor]: Use syscall-based entropy reading where possible.
Next by thread: Re: [tor-bugs] #13696 [Tor]: Use syscall-based entropy reading where possible.
Index(es):
- Author
- Thread