[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: Bug#448775: Uses too much entropy (Debian Bug #343085)
From: |
Simon Josefsson |
Subject: |
Re: Bug#448775: Uses too much entropy (Debian Bug #343085) |
Date: |
Fri, 04 Jan 2008 17:01:20 +0100 |
User-agent: |
Gnus/5.110007 (No Gnus v0.7) Emacs/22.1 (gnu/linux) |
Werner Koch <address@hidden> writes:
> On Fri, 4 Jan 2008 15:16, address@hidden said:
>
>> int
>> gnutls_set_random_seed_file (const char *filename);
>
> I don't think that is a good idea. gnutls does not provide the required
> thread hook function for libgcrypt and thus the appliaction needs to do
> this. If you want these functions you should also add the threading
> wrappers.
Ok.
> Another problem is that if gnutls is used indirectly no seed file is
> used and thus the appliaction needs to do it anyway. The seed file
> should be application specific and not library specific.
My idea would be that the filename in the API comes from the
application.
> Thus I suggest to document this and change the application.
Right. So what should applications like exim do exactly? Is there
anything more to think about than this:
#include <gcrypt.h>
int main ()
{
gcry_error_t rc;
rc = gcry_control (GCRYCTL_SET_RANDOM_SEED_FILE,
"/var/run/exim4/random.seed");
if (rc)
error (EXIT_FAILURE, 0, "gcry_control SET_RANDOM_SEED_FILE");
DoIT(); /* initialize gnutls, runs the MTA.. */
rc = gcry_control (GCRYCTL_UPDATE_RANDOM_SEED_FILE);
if (rc)
fprintf (stderr,
"warning: gcry_control UPDATE_RANDOM_SEED_FILE failed (%d): %s",
rc, gpg_strerror (rc));
return 0;
}
/Simon
- Re: Bug#448775: Uses too much entropy (Debian Bug #343085), (continued)
- Re: Bug#448775: Uses too much entropy (Debian Bug #343085), Andreas Metzler, 2008/01/04
- Re: Bug#448775: Uses too much entropy (Debian Bug #343085), Nikos Mavrogiannopoulos, 2008/01/04
- Re: Bug#448775: Uses too much entropy (Debian Bug #343085), Werner Koch, 2008/01/04
- Re: Bug#448775: Uses too much entropy (Debian Bug #343085), Simon Josefsson, 2008/01/04
- Re: Bug#448775: Uses too much entropy (Debian Bug #343085), Florian Weimer, 2008/01/04
- Re: Bug#448775: Uses too much entropy (Debian Bug #343085), Simon Josefsson, 2008/01/04
- Re: Bug#448775: Uses too much entropy (Debian Bug #343085), Werner Koch, 2008/01/04
- Re: Bug#448775: Uses too much entropy (Debian Bug #343085), Simon Josefsson, 2008/01/04
- Re: Bug#448775: Uses too much entropy (Debian Bug #343085), Florian Weimer, 2008/01/04
- Re: Bug#448775: Uses too much entropy (Debian Bug #343085), Werner Koch, 2008/01/04
- Re: Bug#448775: Uses too much entropy (Debian Bug #343085),
Simon Josefsson <=
- Re: Bug#448775: Uses too much entropy (Debian Bug #343085), Werner Koch, 2008/01/08
- Re: Bug#448775: Uses too much entropy (Debian Bug #343085), Andreas Metzler, 2008/01/30
- Re: Bug#448775: Uses too much entropy (Debian Bug #343085), Werner Koch, 2008/01/31
- Re: Bug#448775: Uses too much entropy (Debian Bug #343085), Ian Goldberg, 2008/01/04
- Re: Bug#448775: Uses too much entropy (Debian Bug #343085), Werner Koch, 2008/01/08
- Re: Bug#448775: Uses too much entropy (Debian Bug #343085), Marcus Brinkmann, 2008/01/09
- Re: Bug#448775: Uses too much entropy (Debian Bug #343085), Guus Sliepen, 2008/01/05
- Re: Bug#448775: Uses too much entropy (Debian Bug #343085), Werner Koch, 2008/01/08
- Re: Bug#448775: Uses too much entropy (Debian Bug #343085), Simon Josefsson, 2008/01/08
- Re: Bug#448775: Uses too much entropy (Debian Bug #343085), Werner Koch, 2008/01/08