Skip to Content [alt-c]
In reply to LibreSSL's PRNG is Unsafe on Linux [Update: LibreSSL fork fix]
Memory locks are released on fork, so LibreSSL could lock some single page and watch for it being unlocked to trigger a reseed.
Alternately, what about using the combination of getpid(2) and times(2)? CPU times reset on fork. It's not 100% safe, but it would be pretty good.
Reply
Your comment will be public. To contact me privately, email me. Please keep your comment polite, on-topic, and comprehensible. Your comment may be held for moderation before being published.
Your Name: (Optional; will be published)
Your Email Address: (Optional; will not be published)
Your Website: (Optional; will be published)
>
monospaced
Post a Reply
Your comment will be public. To contact me privately, email me. Please keep your comment polite, on-topic, and comprehensible. Your comment may be held for moderation before being published.