crypto/rand: use blocking getrandom call on Linux when supported - go - Fork of Go programming language with my patches.

diff options

author	Joe Richey joerichey@google.com <joerichey@google.com>	2017-05-22 14:36:43 -0700
committer	Brad Fitzpatrick <bradfitz@golang.org>	2017-05-23 04:54:42 +0000
commit	95d991d30c59edc4943bd8baf5c664c5f8b1cebe (patch)
tree	efabf1b073677a2d19e8d6b3eedc030c91f0301a /src/runtime/stack.go
parent	f3f29d1dea525f48995c1693c609f5e67c046893 (diff)
download	go-95d991d30c59edc4943bd8baf5c664c5f8b1cebe.tar.xz

crypto/rand: use blocking getrandom call on Linux when supported

By changing getRandomLinux to immediately use the getrandom() syscall without GRND_NONBLOCK, we now only fall back to reading from /dev/urandom on Linux if the kernel does not support the getrandom() syscall. This means reads for crypto/rand will now block if the kernel has insufficient entropy on Linux kernels after v3.16. Before, if the kernel had insufficient entropy, it would fall back to reading from /dev/urandom. This would potentially return predictable data. Fixes #19274 Change-Id: I1cb081ce2f3096f18ad2820e52ecdbd993dc2afc Reviewed-on: https://go-review.googlesource.com/43852 Reviewed-by: Filippo Valsorda <hi@filippo.io> Reviewed-by: Brad Fitzpatrick <bradfitz@golang.org> Run-TryBot: Brad Fitzpatrick <bradfitz@golang.org> TryBot-Result: Gobot Gobot <gobot@golang.org>

Diffstat (limited to 'src/runtime/stack.go')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: