Using OneRNG hardware RNG can I get wireguard to use /dev/random

Jeffrey Walton noloader at gmail.com
Fri Jul 24 10:32:32 CEST 2020


On Fri, Jul 24, 2020 at 4:28 AM peter garner <peter at petergarner.net> wrote:
>
> I've used my OneRNG v3.0 external device to recreate my SSH moduli and
> am now looking to recreate my wireguard keys.
>
> According to the Wireguard docs it uses /dev/urandom:
> https://gist.github.com/rmoriz/58f1768218a4fbc4b318615bfb85111d
>
> fd = open("/dev/urandom", O_RDONLY);
>         if (fd < 0)
>                 return fd;
>         ret = read(fd, out, len);
>         close(fd);

Unrelated, the kernel-crypto folks recommend using /dev/urandom.
Wiregaurd is following best practices. Also see
https://lkml.org/lkml/2017/7/20/993.

Jeff


More information about the WireGuard mailing list