[SERVER-43408] Support getrandom() on RHEL 8 and RHEL 7.4+, and other distros Created: 20/Sep/19 Updated: 06/Dec/22 |
|
| Status: | Backlog |
| Project: | Core Server |
| Component/s: | None |
| Affects Version/s: | None |
| Fix Version/s: | None |
| Type: | Task | Priority: | Major - P3 |
| Reporter: | Mark Benvenuto | Assignee: | Backlog - Security Team |
| Resolution: | Unresolved | Votes: | 0 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Assigned Teams: |
Server Security
|
| Participants: |
| Description |
|
getrandom(2) is a new syscall in Linux 3.17 that avoids using an open file descriptor to get random bytes. We should use it where available. On some platforms, we will need to call the syscall directly and on others, we will need to do runtime detection (i.e. fail gracefully on ENOSYS). Docs: |