From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <chromatix99@gmail.com>
Received: from mail-lb0-x22b.google.com (mail-lb0-x22b.google.com
	[IPv6:2a00:1450:4010:c04::22b])
	(using TLSv1 with cipher RC4-SHA (128/128 bits))
	(Client CN "smtp.gmail.com",
	Issuer "Google Internet Authority G2" (verified OK))
	by huchra.bufferbloat.net (Postfix) with ESMTPS id 6427E21F277
	for <cerowrt-devel@lists.bufferbloat.net>;
	Sun, 22 Mar 2015 18:10:31 -0700 (PDT)
Received: by lbbsy1 with SMTP id sy1so108454315lbb.1
	for <cerowrt-devel@lists.bufferbloat.net>;
	Sun, 22 Mar 2015 18:10:29 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113;
	h=content-type:mime-version:subject:from:in-reply-to:date:cc
	:content-transfer-encoding:message-id:references:to;
	bh=5Z2XSZ0c57gSK+kuIwQxbSk73uw6Hhm51uMIAlvIwao=;
	b=OZ2WSpYUsPA3d5CF7HJFbjt018w1vPDmshDgh4MQYDjR1R+SDMLnSaP1bVK0gKLa8X
	ODu6aaq6uYSPfYWTr4AnxsdO6N0XPHIsoqean/9OauHGtL8r1pCfysGVly19ITwn12XB
	lWgtEA2LVlzov6fAf2b5jogcsDx6NA6LrTQco1xF7coqQBOPx7hUsE91UK+s/ZvBnTPR
	522LaC+UHTOmA3cvGgU2Fvp7uFbPAzK3QnVv4USGYLpInGjoKCClGPMVzjawJOhhWUza
	fQhh18qTh/UwDmk93Jj5qgtrvwLn2pQSFKZlrFDEmiE6ea7v6EApXf4eeVkaIQP95ugl
	P7Ag==
X-Received: by 10.152.6.197 with SMTP id d5mr11273955laa.121.1427073029793;
	Sun, 22 Mar 2015 18:10:29 -0700 (PDT)
Received: from bass.home.chromatix.fi (37-136-12-37.rev.dnainternet.fi.
	[37.136.12.37])
	by mx.google.com with ESMTPSA id rk3sm2293895lbb.23.2015.03.22.18.10.28
	(version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128);
	Sun, 22 Mar 2015 18:10:28 -0700 (PDT)
Content-Type: text/plain; charset=utf-8
Mime-Version: 1.0 (Mac OS X Mail 8.2 \(2070.6\))
From: Jonathan Morton <chromatix99@gmail.com>
In-Reply-To: <CAA93jw40JoJLZK_=c14v7OdZrnUJrkvzk=-hxYKP0QT=T=5i0Q@mail.gmail.com>
Date: Mon, 23 Mar 2015 03:10:26 +0200
Content-Transfer-Encoding: quoted-printable
Message-Id: <4605FB2D-60EC-480A-9C5A-2BFF78560A09@gmail.com>
References: <CAA93jw40JoJLZK_=c14v7OdZrnUJrkvzk=-hxYKP0QT=T=5i0Q@mail.gmail.com>
To: Dave Taht <dave.taht@gmail.com>
X-Mailer: Apple Mail (2.2070.6)
Cc: "cerowrt-devel@lists.bufferbloat.net" <cerowrt-devel@lists.bufferbloat.net>
Subject: Re: [Cerowrt-devel] archer c7 v2, policing, hostapd,
	test openwrt build
X-BeenThere: cerowrt-devel@lists.bufferbloat.net
X-Mailman-Version: 2.1.13
Precedence: list
List-Id: Development issues regarding the cerowrt test router project
	<cerowrt-devel.lists.bufferbloat.net>
List-Unsubscribe: <https://lists.bufferbloat.net/options/cerowrt-devel>,
	<mailto:cerowrt-devel-request@lists.bufferbloat.net?subject=unsubscribe>
List-Archive: <https://lists.bufferbloat.net/pipermail/cerowrt-devel>
List-Post: <mailto:cerowrt-devel@lists.bufferbloat.net>
List-Help: <mailto:cerowrt-devel-request@lists.bufferbloat.net?subject=help>
List-Subscribe: <https://lists.bufferbloat.net/listinfo/cerowrt-devel>,
	<mailto:cerowrt-devel-request@lists.bufferbloat.net?subject=subscribe>
X-List-Received-Date: Mon, 23 Mar 2015 01:11:00 -0000


> On 23 Mar, 2015, at 02:24, Dave Taht <dave.taht@gmail.com> wrote:
>=20
> I swear I'd poked into this and fixed it in cerowrt 3.10, but I guess
> I'll have to go poking through the patch set. Something involving
> random number obtaining, as best as I recall.

If it=E2=80=99s reseeding an RNG using the current time, that=E2=80=99s =
fairly bad practice, especially if it=E2=80=99s for any sort of =
cryptographic purpose.  For general purposes, seed a good RNG once =
before first use, using /dev/urandom, then just keep pulling values from =
it as needed.  Or, if cryptographic quality is required, use an actual =
crypto library=E2=80=99s RNG.

 - Jonathan Morton