Only read 32 bytes from /dev/urandom for a seed. #15
Conversation
|
Added another commit to the repo, this one is an extension of the test program so that all the pieces of the library can be exercised (or even actually USED) from the command line or a shell script. The Sha512 output is the same strings as the standard sha512sum program, the Ed25519 hex inputs and outputs are in standard hex forms as searchable on the web. |
|
Thanks for identifying the problem and writing a solution @rdebath ! I agree that defaulting to buffered IO on Rather than switching from |
Use setbuf() to remove the buffering.
|
Just double checked with strace and that works just as well, good call! |
|
I'm willing to use unbuffered IO, however I have no interest in the command line interface test program or the makefile that comes with it. That's a bunch more code for me to maintain that's outside the scope of this project. Feel free to host it as your own project though. |
The problem is you're using the standard I/O functions to read this Unix device; that is not a good idea.
The stdio read functions are buffered so the
fread()call will always read a full block from the input. For files and terminals this isn't a problem; the former will just read the data the latter will just return whatever's available.The problem with
/dev/urandomis that a full block of data will be available so a whole block will be read, however, this over a hundred times as much randomness as we actually need. This takes quite a while to generate as the kernel tries very hard to give good results. As the extra data is never used this doesn't actually deplete the theoretical entropy that the kernel has, but it doesn't know that. So this can cause problems too, especially if other applications use the blocking version of the device or you have a daemon that hunts for more randomness.The Unix functions
open(),read()andclose()will treat the device nicely.