[liberationtech] Google confirms critical Android crypto flaw
Maxim Kammerer
mk at dee.su
Thu Aug 15 10:23:28 PDT 2013
On Thu, Aug 15, 2013 at 7:33 PM, Doug Chamberlin
<chamberlin.doug at gmail.com> wrote:
> Are you really saying THOUSANDS have reviewed and maintain the RNG? For
> real?
You are right — I didn't take the possibility of useless
tongue-in-cheek remarks into account when using that expression in
order to support a technical argument. Why don't you check the 20-year
commit history of the relevant code [1], make an educated guess wrt.
reviewers/committers ratio, account for developer attrition rate, and
return to us with a hopefully better estimate. Good luck!
[1] https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/log/drivers/char/random.c
--
Maxim Kammerer
Liberté Linux: http://dee.su/liberte
More information about the liberationtech
mailing list