Makes sense to me; the ioctls to give an estimate of the amount of entropy that was just added are protected with CAP_SYS_ADMIN, so I think we shouldn't just automatically grant that privilege; it's far too dangerous to give away on a whim. But simply writing to the devices themselves, as Botan does, seems fine.
Thanks -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1629996 Title: Cannot open /dev/random and /dev/urandom for write To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/snapd/+bug/1629996/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
