svn commit: r317015 - in head/sys: boot/forth conf crypto/chacha20 dev/random libkern sys
Xin Li
delphij at delphij.net
Mon Apr 17 04:35:15 UTC 2017
On 4/16/17 08:30, Rodney W. Grimes wrote:
>>
>>> On 16 Apr 2017, at 13:07, Rodney W. Grimes <freebsd at pdx.rh.CN85.dnsmgr.net> wrote:
>>>
>>>>> From replacing the rc4 algorithm with chacha20, this chalice has now
>>>> become poisoned with the job of redesigning the entire structure of
>>>> kernel random-number generation.
>>>>
>>>> This may take a while, and I'm already behind on RNG jobs.
>>>
>>> I do not see how this is a complete redesign of RNG, and if it is
>>> such a heart ache to change algorithms in this code then it probably
>>> should be redesigned?
>>
>> The RC4 algorithm is standard. Making the alogorithm pluggable means more
>> code, more testing and more time (time which I am rather short of).
>
> I would rather see a proper implementation later, than a poor design
> decision today.
I don't see how not supporting pluggable algorithm for the kernel
arc4andom() a poor design decision.
We are supposed to make good algorithm choices, making it pluggable
would only make the code much more bloated (to make the load/unload PRNG
seeding right), less efficient (to allow caller to safely call the
interfaces) for something that system administrators should never fiddle
with.
Cheers,
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 801 bytes
Desc: OpenPGP digital signature
URL: <http://lists.freebsd.org/pipermail/svn-src-all/attachments/20170417/d5e0c32c/attachment.sig>
More information about the svn-src-all
mailing list