Bug 1890

Summary: Entropy management for linux
Product: Portable OpenSSH Reporter: jchadima
Component: MiscellaneousAssignee: Assigned to nobody <unassigned-bugs>
Status: CLOSED WONTFIX    
Severity: normal CC: djm, jchadima, jfch
Priority: P2    
Version: 5.8p1   
Hardware: All   
OS: Linux   
Attachments:
Description Flags
patch solving the problem
none
Improved patch solving the problem none

Description jchadima 2011-04-15 19:54:20 AEST 
This is a concept for entropy management in Linux.
Comment 1 jchadima 2011-04-15 19:55:18 AEST 
Created attachment 2029 [details]
patch solving the problem
Comment 2 Damien Miller 2011-04-19 16:08:25 AEST 
No thanks, I don't want to add knobs and buttons here. If people require a different policy then I'd encourage them to build with --with-rand-helper and build their logic into ssh-rand-helper
Comment 3 jchadima 2011-08-08 20:18:22 AEST 
Created attachment 2073 [details]
Improved patch solving the problem
Comment 4 jchadima 2011-08-08 20:20:53 AEST 
Damien, 
can you recheck your opinion when the rad-helper is dead?
Comment 5 Damien Miller 2011-08-12 10:55:34 AEST 
Shouldn't this be in OpenSSL? It includes some support for a RANDFILE environment variable, but it doesn't seem to actually use it.

I still don't like adding a knob for this in OpenSSH.
Comment 6 Damien Miller 2015-04-17 14:48:10 AEST 
We won't be implementing this in OpenSSH
Comment 7 Damien Miller 2015-08-11 23:05:16 AEST 
Set all RESOLVED bugs to CLOSED with release of OpenSSH 7.1