Using OneRNG hardware RNG can I get wireguard to use /dev/random
Jeffrey Walton
noloader at gmail.com
Fri Jul 24 10:32:32 CEST 2020
On Fri, Jul 24, 2020 at 4:28 AM peter garner <peter at petergarner.net> wrote:
>
> I've used my OneRNG v3.0 external device to recreate my SSH moduli and
> am now looking to recreate my wireguard keys.
>
> According to the Wireguard docs it uses /dev/urandom:
> https://gist.github.com/rmoriz/58f1768218a4fbc4b318615bfb85111d
>
> fd = open("/dev/urandom", O_RDONLY);
> if (fd < 0)
> return fd;
> ret = read(fd, out, len);
> close(fd);
Unrelated, the kernel-crypto folks recommend using /dev/urandom.
Wiregaurd is following best practices. Also see
https://lkml.org/lkml/2017/7/20/993.
Jeff
More information about the WireGuard
mailing list