From: Julian Scheid <julians37@gmail.com>
To: Paul Eggert <eggert@cs.ucla.edu>
Cc: Leo Liu <sdl.web@gmail.com>, emacs-devel@gnu.org
Subject: Re: New function: secure-random-bytes
Date: Thu, 16 May 2019 00:09:41 +1200 [thread overview]
Message-ID: <CAD1CDTVe0FkjTwLwAABit1PS-rD-zKvC5W7YEEXdhSKsuT4BOw@mail.gmail.com> (raw)
In-Reply-To: <51474549.2050005@cs.ucla.edu>
[-- Attachment #1: Type: text/plain, Size: 1653 bytes --]
On Tue, Mar 19, 2013 at 5:49 AM Paul Eggert <eggert@cs.ucla.edu> wrote:
> On 03/18/13 03:26, Leo Liu wrote:
>
> > From that discussion (almost two years ago) there was clearly interest
> > in having a strongly random source. The solution you proposed looks
> > excellent. Are there any progress on this matter?
>
> There's been no progress, alas.
> Yours is the first sign of interest that I've seen since then.
> I may be able to find a student or two
> who might volunteer to work on this; we'll see.
>
> There's one extra wrinkle I'd like to add while we're at it:
> if available we should use the random-number instructions
> in recent implementations of x86 and x86-64 architectures
> as this should yield even better performance.
>
> http://en.wikipedia.org/wiki/RdRand
I'm working on an implementation of SASL authentication and for that I
need to generate a reasonably secure nonce.
Performance is not an issue in my application because it only needs to
perform authentication every now and then, and each time only a single
nonce is needed.
I'm now using `(random t)' but that's brittle: I don't see a way to
guarantee that the random data it produces is of sufficient quality.
(There's a chance both /dev/urandom is unavailable (perhaps because
Emacs is running in a chroot or a container) and GnuTLS initialization
throws an error, in which case `random' would silently fall back to a
non-secure source. I suppose it's good enough for my use case but it
does highlight the absence of `secure-random-bytes'.)
I wonder, is there anything speaking against adding a simple
implementation now and worrying about maximal performance later?
[-- Attachment #2: Type: text/html, Size: 2357 bytes --]
next prev parent reply other threads:[~2019-05-15 12:09 UTC|newest]
Thread overview: 12+ messages / expand[flat|nested] mbox.gz Atom feed top
2011-06-24 7:50 New function: secure-random-bytes Leo
2011-06-24 9:57 ` Ted Zlatanov
2011-06-24 17:33 ` Paul Eggert
2011-06-25 7:26 ` Leo
2011-06-27 16:10 ` Ted Zlatanov
2013-03-18 10:26 ` Leo Liu
2013-03-18 16:48 ` Paul Eggert
2013-03-18 21:07 ` Romain Francoise
2019-05-15 12:09 ` Julian Scheid [this message]
2019-05-16 17:34 ` Paul Eggert
2011-06-24 13:33 ` James Cloos
2011-06-25 7:27 ` Leo
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
List information: https://www.gnu.org/software/emacs/
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=CAD1CDTVe0FkjTwLwAABit1PS-rD-zKvC5W7YEEXdhSKsuT4BOw@mail.gmail.com \
--to=julians37@gmail.com \
--cc=eggert@cs.ucla.edu \
--cc=emacs-devel@gnu.org \
--cc=sdl.web@gmail.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
Code repositories for project(s) associated with this public inbox
https://git.savannah.gnu.org/cgit/emacs.git
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).