[Pkg-gnutls-maint] Mesos-TT#4134222 Re: Maintainer: crywrap/libgnutls

Simon Josefsson simon at josefsson.org
Tue May 27 15:21:17 UTC 2008


James Westby <jw+debian at jameswestby.net> writes:

> On Tue, 2008-05-27 at 16:35 +0200, rd at mesos.de wrote:
>> debian etch 64 bit standard installation. I tested it on 5 different
>> servers, some have been installed by me, some by other people.
>
> Hi,
>
> The issue is the lack of entropy then. There are existing bug reports
> about this issue.
>
>   http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=448775
>
> is one that would probably help in your case, though not if you have
> no entropy at all.

Note that libgcrypt (which gnutls uses) never reads from /dev/random
unless you are generating private keys.  If you are using just normal
TLS sessions, it should only read from /dev/urandom.  What exactly is
crywrap doing when it stalls?

/Simon



More information about the Pkg-gnutls-maint mailing list