random(4) plugin infrastructure for mulitple RNG in a modular fashion
Mark R V Murray
mark at grondar.org
Fri Aug 9 07:29:26 UTC 2013
On 8 Aug 2013, at 22:40, David O'Brien <obrien at FreeBSD.org> wrote:
> On Thu, Aug 08, 2013 at 10:22:42PM +0100, Mark R V Murray wrote:
>> Mechanism exists, but its disabled. I'd like to re-enable it. Look for
>> "seeded = 1" in randomdev_soft.c, and see what that "seeded" variable
>> does.
>
> Hi Mark,
> I'm not sure what you're saying here. That we could block at boot for
> reason of the PRGN not being seeded if desired?
Correct!
> Or that we start seeded and thus never get unseeded?
That is what we currently do. We "fix" it by pumping junk into /dev/random with initrandom, but this is racey and suboptimal.
M
--
Mark R V Murray
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 353 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://lists.freebsd.org/pipermail/freebsd-arch/attachments/20130809/31fef7d4/attachment.sig>
More information about the freebsd-arch
mailing list