Conversation

Replying to
And about the nonblocking nature of getentropy(): After head scratching enough I realized (it's in the slides) that gentropy doesn't need to block because calling it produces entropy. Every call to it takes a slice of shared stream and one can't predict the order of consumption.
1
1
Replying to and
Every fork(), malloc(), free(), etc. takes a slice of shared stream. It's impossible to predict how much the random stream has advanced. And the stream gets stirred all the time with new entropy from multiple sources. It's really novel!
1
5
The concept of entropy running out is a nonsense Linux cargo cult approach. It definitely makes sense to keep gathering entropy and adding it to the CSPRNG (which can avoid trusting either the existing state or the new entropy) but not because entropy of the CSPRNG is used up.
8