Key generation: is it possible to fail fast?

Tobias Mueller muelli at
Fri Feb 17 16:17:13 CET 2017


On Fri, Feb 17, 2017 at 01:39:01PM -0000, Bjarni Runar Einarsson wrote:
> If the system doesn't have enough entropy, and generates entropy
> too slowly to create a key within a "reasonable time frame",
> would it be possible to detect that and fail early?
Hm. I guess you could run a timer and abort the key generation (e.g. kill the 
process) if it's taking you too long.

> Of course, anything that can be done to speed up key generation
> would be ideal
ECC keys are super fast to generate.

I've seen people installing havegd in virtual machine environments
to emulate entropy.


More information about the Gnupg-devel mailing list