From: xtkoba+ruby@... Date: 2021-03-10T10:53:37+00:00 Subject: [ruby-core:102796] [Ruby master Bug#14716] SecureRandom throwing an error in Ruby 2.5.1 Issue #14716 has been updated by xtkoba (Tee KOBAYASHI). I can reproduce this issue with Ruby 3.0.0p0 on my old Android phone by artificially opening a lot of files. The reproducer code (named `bug14716.rb`): ```ruby require 'securerandom' a = [] 1017.times { a.push File.open '/' } SecureRandom.hex ``` In a shell: ``` $ uname -a Linux localhost 3.10.49 #7 SMP PREEMPT Mon Jul 25 16:03:30 CST 2016 armv7l GNU/Linux $ ulimit -n 1024 $ ruby bug14716.rb /data/data/com.example.ruby/files/lib/ruby/3.0.0/securerandom.rb:92:in `urandom': failed to get urandom (RuntimeError) from /data/data/com.example.ruby/files/lib/ruby/3.0.0/securerandom.rb:92:in `gen_random_urandom' from /data/data/com.example.ruby/files/lib/ruby/3.0.0/securerandom.rb:139:in `random_bytes' from /data/data/com.example.ruby/files/lib/ruby/3.0.0/securerandom.rb:160:in `hex' from bug14716.rb:6:in `
' ``` To reproduce this issue in recent Linux systems it will be necessary to modify `random.c` so that it does not use `getrandom` (or `__NR_getrandom` syscall), nor `getentropy` in recent dev versions, as these functions do not consume any file descriptors. ---------------------------------------- Bug #14716: SecureRandom throwing an error in Ruby 2.5.1 https://bugs.ruby-lang.org/issues/14716#change-90818 * Author: snehavas (sneha vasanth) * Status: Feedback * Priority: Normal * ruby -v: 2.6.3 * Backport: 2.3: DONTNEED, 2.4: DONTNEED, 2.5: REQUIRED ---------------------------------------- Hi, We recently upgraded from ruby 2.3.6 to 2.5.1. We use SecureRandom.uuid to generate a random number for our session. Post the upgrade we have been getting the following error intermittently ``` app error: failed to get urandom (RuntimeError) E, [2018-04-27T04:55:08.741859 #16550] ERROR -- : /usr/lib/ruby/2.5.0/securerandom.rb:99:in `urandom' E, [2018-04-27T04:55:08.741898 #16550] ERROR -- : /usr/lib/ruby/2.5.0/securerandom.rb:99:in `gen_random_urandom' E, [2018-04-27T04:55:08.741932 #16550] ERROR -- : /usr/lib/ruby/2.5.0/securerandom.rb:129:in `random_bytes' E, [2018-04-27T04:55:08.741965 #16550] ERROR -- : /usr/lib/ruby/2.5.0/securerandom.rb:219:in `uuid' E, [2018-04-27T04:55:08.741997 #16550] ERROR -- : /usr/share/nginx/frontend/app/utilities/log.rb:74:in `create_session_info' E, [2018-04-27T04:55:08.742036 #16550] ERROR -- : /usr/share/nginx/frontend/app/utilities/log.rb:11:in `context' ``` We understand that there was a change in ruby 2.5.1 where we now look at OS sources as the first point of contact to generate random numbers as opposed to OpenSSL. Any idea why this could be happening? -- https://bugs.ruby-lang.org/ Unsubscribe: