Not enough random bytes available. Please do some other work to give the OS a chance to collect more entropy! (Need 283 more bytes)

When working to create a GPG key to sign some RPM packages I was building I ran into a message I had never seen before. I was building the RPM packages on an older server with not a lot of power which I am assuming contributed to my issue. The error is noted below but basically means you need to generate a lot of random bytes which are used to create a unique key. Within the error it states that the computer needs to collect more entropy so below I explain the error in more detail, what entropy means, why more entropy is needed, and how to generate as much as possible in a short amount of time to finish generating the GPG key.

Message Displayed During GPG Key Generation:
Not enough random bytes available. Please do some other work to give the OS a chance to collect more entropy! (Need 283 more bytes)

What Is Entropy & Why Does GPG Key Generation Need It:

Dictionary Entry For Entropy: Entropy is a state of disorder, confusion, and disorganization.

So in the case of GPG key generation Entropy means actions performed on the computer to generate a random GPG key. These actions could be moving the mouse, typing on the keyboard, clicking the mouse, or other things performed on the computer. I found it easiest to create the most entropy by configuring and/or compiling applications. You need a certain number of actions to occur during the key generation so the key is guaranteed to be completely random thus making it more secure. The amount of random actions needed will depend on the length of the key. The default key type (“DSA and Elgamal” or ELG-E) can be between 1024 bits and 4096 bits long. So if you configure your keysize to be 1024 bits long the amount of entropy required will be less than if the keysize is configured for say 2048 bits long.

Generate Entropy Quickly For GPG Key Generation:

I suggest compiling an application to generate as much entropy as possible in a short amount of time. If you don’t already have some package sources on the computer you need to generate entropy on then download the curl source here. Unpack the curl package by typing “tar -zxvf curl-7.20.0.tar.gz” from the directory where the file was downloaded. Then change directory into the curl source directory that was just created by typing “cd curl-7.20.0”. Then issue the configure command to begin the curl configuration by typing “./configure” from within the curl-7.20.0 directory. This will more than likely be enough entropy for the server to finish generating the GPG key however if it is not you can next type “make” to begin compiling the application. While either or both of those commands are in process move your mouse around the screen to increase the amount of entropy being generated. Also don’t worry both of those commands are simply compiling curl and not installing it.

Monitor Amount Of Entropy Being Generated On CentOS During GPG Key Generation:

Eample View Of Available Entropy After Issuing Watch Command On CentOS:

If you issue the above command during the GPG key generation and after receiving the “collect more entropy” message this number will likely be 0. As you begin to compile the curl application you will see this number start to rise and fall as more entropy is used by the GPG key generation.

After some amount of time the GPG key generation will complete. Again the amount of time will vary based on the keysize chosen during the configuration of the GPG key. Below is the output of the entire GPG key generation process including the command issued to start the process.

Generate A GPG Key On CentOS Linux Using gpg –gen-key:

So the entropy needed for GPG key generation is really just random actions needed to guarantee that a random key is generated.