Re: [Sks-devel] why does SKS have /dev/random open for writing?

sks-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Sks-devel] why does SKS have /dev/random open for writing?

From:	John Clizbe
Subject:	Re: [Sks-devel] why does SKS have /dev/random open for writing?
Date:	Thu, 19 Sep 2013 20:59:35 -0500
User-agent:	Mozilla/5.0 (Macintosh; Intel Mac OS X 10.6; rv:24.0) Gecko/20100101 Firefox/24.0 SeaMonkey/2.21

John Clizbe wrote:
>> 
> Arghh. cryptokit. (Too many libraries with similar names)
> 
Indeed it is. From src/cryptokit.mli:
(** The [Random] module provides random and pseudo-random number generators
    suitable for generating cryptographic keys, nonces, or challenges. *)
module Random : sig

  class type rng =
    object
      method random_bytes: string -> int -> int -> unit
        (** [random_bytes buf pos len] stores [len] random bytes
            in string [buf], starting at position [pos]. *)
      method wipe: unit
        (** Erases the internal state of the generator.
            Do not call [random_bytes] after calling [wipe]. *)
    end
    (** Generic interface for a random number generator. *)

  val string: rng -> int -> string
    (** [random_string rng len] returns a string of [len] random bytes
        read from the generator [rng]. *)

  val secure_rng: rng
    (** A high-quality random number generator, using hard-to-predict
        system data to generate entropy.  This generator either uses
        the OS-provided RNG, if any, or reads from
        [/dev/random] on systems that supports it, or interrogates
        the EGD daemon otherwise (see [http://egd.sourceforge.net/]).
        For EGD, the following paths are tried to locate the Unix socket
        used to communicate with EGD:
        - the value of the environment variable [EGD_SOCKET];
        - [$HOME/.gnupg/entropy];
        - [/var/run/egd-pool]; [/dev/egd-pool]; [/etc/egd-pool].

        The method [secure_rng#random_bytes] fails
        if no suitable RNG is available.
        [secure_rng#random_bytes] may block until enough entropy
        has been gathered.  Do not use for generating large quantities
        of random data, otherwise you could exhaust the entropy sources
        of the system. *)

  val system_rng: unit -> rng
    (** [system_rng ()] returns a random number generator derived
        from the OS-provided RNG.  It raises [Error No_entropy_source]
        if the OS does not provide a secure RNG.  Currently, this function
        is supported under Win32, and always fails under Unix. *)

  val device_rng: string -> rng
    (** [device_rng devicename] returns a random number generator
        that reads from the special file [devicename], e.g.
        [/dev/random] or [/dev/urandom]. *)

  val egd_rng: string -> rng
    (** [device_rng egd_socket] returns a random number generator
        that uses the Entropy Gathering Daemon ([http://egd.sourceforge.net/]).
        [egd_socket] is the path to the Unix socket that EGD uses for
        communication.  *)

  val pseudo_rng: string -> rng
    (** [pseudo_rng seed] returns a pseudo-random number generator
        seeded by the string [seed].  [seed] must contain at least
        16 characters, and can be arbitrarily longer than this,
        except that only the first 55 characters are used.
        Technically, the first 16 characters of [seed] are used as
        a key for the AES cipher in CBC mode, which encrypts the output
        of a lagged Fibonacci generator [X(i) = (X(i-24) + X(i-55)) mod 256]
        seeded with the first 55 characters of [seed].
        While this generator is believed to have good statistical properties,
        it still does not generate ``true'' randomness: the entropy of
        the strings it creates cannot exceed the entropy contained in
        the seed.  As a typical use,
        [Random.pseudo_rng (Random.string Random.secure_rng 20)] returns a
        generator that can generate arbitrarily long strings of pseudo-random
        data without delays, and with a total entropy of approximately
        160 bits. *)
end

The implementation code in cryptokit.ml starts at line 1066 (version 1.7).
It shows the random device being opened RDONLY.



-- 
John P. Clizbe                      Inet: John (a) Gingerbear DAWT net
SKS/Enigmail/PGP-EKP                  or: John ( @ ) Enigmail DAWT net
FSF Assoc #995 / FSFE Fellow #1797  hkp://keyserver.gingerbear.net  or
     mailto:address@hidden

Q:"Just how do the residents of Haiku, Hawai'i hold conversations?"
A:"An odd melody / island voices on the winds / surplus of vowels"

signature.asc
Description: OpenPGP digital signature

[Prev in Thread]

Current Thread

[Next in Thread]

Re: [Sks-devel] why does SKS have /dev/random open for writing?, (continued)
- Re: [Sks-devel] why does SKS have /dev/random open for writing?, Arnold, 2013/09/19
  - Re: [Sks-devel] why does SKS have /dev/random open for writing?, Jeremy T. Bouse, 2013/09/19
- Re: [Sks-devel] why does SKS have /dev/random open for writing?, Petru Ghita, 2013/09/19
- Re: [Sks-devel] why does SKS have /dev/random open for writing?, John Clizbe, 2013/09/19
  - Re: [Sks-devel] why does SKS have /dev/random open for writing?, John Clizbe, 2013/09/19
    - Re: [Sks-devel] why does SKS have /dev/random open for writing?, John Clizbe <=
- Re: [Sks-devel] why does SKS have /dev/random open for writing?, David Benfell, 2013/09/19
- Re: [Sks-devel] why does SKS have /dev/random open for writing?, Phil Pennock, 2013/09/20
  - Re: [Sks-devel] why does SKS have /dev/random open for writing?, Daniel Kahn Gillmor, 2013/09/21

Prev by Date: Re: [Sks-devel] why does SKS have /dev/random open for writing?
Next by Date: Re: [Sks-devel] why does SKS have /dev/random open for writing?
Previous by thread: Re: [Sks-devel] why does SKS have /dev/random open for writing?
Next by thread: Re: [Sks-devel] why does SKS have /dev/random open for writing?
Index(es):
- Date
- Thread