Bug#759590: Error in GnuTLS initialization: Failed to acquire random data.

Klaus Ethgen Klaus at Ethgen.ch
Sat Aug 30 12:40:36 UTC 2014


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Hi,

Am Sa den 30. Aug 2014 um 13:01 schrieb Evgeni Golov:
> I can reproduce the original mutt issue, when wrapping mutt with 
> eatmydata. The interesting thing is, that mutt will open urandom via
>  open("/dev/urandom", O_RDONLY)
> when started directly, but not, when eatmydata is involved.
> This seems to be the issue for the eatmydata case. Not sure about the 
> others, though.

I am not sure. libeatmydata has no reference to /dev/u?random at all.
And it makes no sense to handle that different.

However, as the problem occurs with the new libgnutls I think that it is
doing some magic when sync and fsync is a noop. Maybe they introduced a
pseudo security feature over there.

I might even have a explanation for the exim stuff. As I run apt only
with eatmydata, exim will get restarted with preloaded eatmydata. That
might explain that the problem pops up the first day. But what is on the
second when exim is restart by cron? I even restart exim by hand without
eatmydata loaded. And Errors occurred afterwards too.

So, my conclusion is that there /is/ some weird stuff in gnutls that
triggers the problem even (in some cases that are not clear at the
moment) without eatmydata involved.

Regards
   Klaus
- -- 
Klaus Ethgen                              http://www.ethgen.ch/
pub  4096R/4E20AF1C 2011-05-16   Klaus Ethgen <Klaus at Ethgen.de>
Fingerprint: 85D4 CA42 952C 949B 1753  62B3 79D0 B06F 4E20 AF1C
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1
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=DphJ
-----END PGP SIGNATURE-----



More information about the Pkg-gnutls-maint mailing list