[lxc-devel] [PATCH] hwaddr templating
Kent R. Spillner
kspillner at acm.org
Tue Jan 7 00:04:07 UTC 2014
On Mon, Jan 06, 2014 at 01:01:03PM -0600, Serge Hallyn wrote:
> > When will this ever fail on Linux? Does Android provide /dev/urandom?
>
> For one thing, when you're in a nested container and not allowed
> to read /dev/urandom :)
Ahhh, yes, of course! :)
> Do we need to worry about draining the entropy pool? Keeping in
> mind that unprivileged containers are now a reality...
Hrrrmmm... My suggestion is more wasteful, but the original randinit()
can still be abused to drain the pool (albeit more slowly). I wonder
how bad it is in reality, however; I assume running containers contribute
plenty of entropy back to the host.
More information about the lxc-devel
mailing list