Bug #3579: kclient: Use less secure random number generator so we don't consume entropy - CephFS - Ceph

Actions

Copy link

Bug #3579

closed

kclient: Use less secure random number generator so we don't consume entropy

Added by David Zafman over 11 years ago. Updated about 11 years ago.

Status:

Resolved

Priority:

High

Assignee:

Sam Lang

Category:

Target version:

% Done:

Source:

Development

Tags:

Backport:

Regression:

Severity:

Reviewed:

Affected Versions:

ceph-qa-suite:

Component(FS):

Labels (FS):

Pull request ID:

Crash signature (v1):

Crash signature (v2):

Description

The routines __choose_mds() and ceph_mdsmap_get_random_mds() call the kernel get_random_bytes() which gets random number suitable for key generation. Pseudo random numbers are sufficient for our purposes. Also, both cases could check if there is only 1 possible choice and skip the call to get a random number.

VMs especially can have trouble getting entropy so it is best not to consume that resource.

History
Notes
Property changes

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Ceph » CephFS

Custom queries

Bug #3579

kclient: Use less secure random number generator so we don't consume entropy

Updated by Greg Farnum over 11 years ago

Updated by Sage Weil about 11 years ago

Updated by Sage Weil about 11 years ago

Updated by Sam Lang about 11 years ago

Updated by Sam Lang about 11 years ago

Updated by Sam Lang about 11 years ago

Updated by Ian Colle about 11 years ago