Post Akws2xRVdJdWNgIX7Q by Gusted@social.linux.pizza
 (DIR) More posts by Gusted@social.linux.pizza
 (DIR) Post #Akws2xRVdJdWNgIX7Q by Gusted@social.linux.pizza
       2024-08-14T02:24:56Z
       
       0 likes, 1 repeats
       
       I've written another Linux kernel module (my second one, and counting) for the YubiKey 5. It acts as a driver for the yubikey, so it can be used as a hardware RNG provider for the Linux kernel. It uses the OpenPGP application that's available on the yubikey to generate random bytes, which are then mixed into the entropy pool of the kernel. It also automatically mixes new generated bytes into the pool after the kernel reseeds (behavior of the hw_random framework). Now you can even feel more secure about using /dev/(u)random.Source code: https://codeberg.org/Gusted/yk5-randomFor, what I assume, security reasons, the yubikey's LED stays on because the driver uses the CCID interface, which is quite distracting.#security #yubikey