Linux 5.4 Will Try When Needed To Actively Generate RNG Entropy To Avoid Boot Problems

Written by Michael Larabel in Linux Kernel on 30 September 2019 at 05:57 AM EDT. 23 Comments
Linux 5.4-rc1 didn't end up being released on Sunday night as is tradition but instead there were some last-minute critical patches that landed around the kernel's handling of the random number generator / entropy at boot-time.

The changes involve the kernel now trying to actively generate entropy to feed the random number generator when needed where as previously it would wait for entropy. In the event of idle systems, the system could wait indefinitely.

User-space brought this problem to light with GNOME/GDM requesting secure randomness at boot time, which exposed the vulnerability in the Linux kernel's getrandom() call. Now it's all hopefully sorted out with trying to generate the entropy when needed.

The change will start actively collecting entropy when needed and feeding it well for newer CPUs with high frequency timestamp counter support and generating timer noise. Other avenues for improving the kernel's "random" code are also being explored like exploiting CPU speculative execution's complexities.

With these random improvements, Linux 5.4 is also reverting a revert of an EXT4 improvement from Linux 5.3 that was bringing this issue to light.

So it's an interesting change on top of all the other features and changes of Linux 5.4. Presumably Linus Torvalds will move ahead today and issue Linux 5.4-rc1.
Related News
About The Author
Michael Larabel

Michael Larabel is the principal author of and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via

Popular News This Week