from Hacker News

Ask HN: Blocking os.urandom calls in Python = 3.6

by jbaviat on 11/19/18, 3:47 PM with 4 comments

In Python 3.6 os.urandom went blocking [1]. As an attacker, how would you destroy the system's entropy to make these calls block (and thus make Python block)? E.g. uuid.uuid4 is now blocking [2].

[1] https://www.python.org/dev/peps/pep-0524/

[2] https://github.com/python/cpython/blob/8b9c33ea9ce902f902c9d9900121010801950547/Lib/uuid.py#L759

by detaro on 11/19/18, 3:58 PM
What do you mean by "destroy the system's entropy"/what attack scenario do you see?