Filippo Valsorda :go: on Nostr: > we can't drop the /dev/urandom fallback, it would break too many decade-old kernels ...
> we can't drop the /dev/urandom fallback, it would break too many decade-old kernels
Ok. Fine. But we're getting a seccomp self-executing test that tests the fallback *and* itself and then another test that tests that the fallback runs only under test.
Also the fallback is slow.
(Again multiple hours of work for 21 lines of production change, but I am very happy that there are precisely three new lines in the "most Go programs depend on this for security" code path.)
https://go.dev/cl/608175
Ok. Fine. But we're getting a seccomp self-executing test that tests the fallback *and* itself and then another test that tests that the fallback runs only under test.
Also the fallback is slow.
(Again multiple hours of work for 21 lines of production change, but I am very happy that there are precisely three new lines in the "most Go programs depend on this for security" code path.)
https://go.dev/cl/608175