Extremely Slow Ed25519 Key Generation (Entropy Source?)
Werner Koch
wk at gnupg.org
Thu Sep 28 14:26:26 CEST 2017
On Thu, 28 Sep 2017 07:42, r030t1 at gmail.com said:
> It does seem that key generation slows appreciably after exhausting
> the entropy pool. Is there a way to set the entropy source for
> internal libgcrypt operations?
Put this into /etc/gcrypt/random.conf
--8<---------------cut here---------------start------------->8---
# Options for the random generator
# If you don't want the Jitter based thing you may disable it,
#disable-jent
# Only use /dev/urandom
only-urandom
--8<---------------cut here---------------end--------------->8---
That is in general okay because on modern kernels we anyway use the
getrandom call and thus we are eben safe at boot time.
Salam-Shalom,
Werner
--
Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 227 bytes
Desc: not available
URL: </pipermail/attachments/20170928/a85d148e/attachment-0001.sig>
More information about the Gcrypt-devel
mailing list