3782136ff1
As discussed in that commit message, it is a dangerous default. But the safe default causes enough pain on a variety of platforms that for now, restore the prior default. Some of this is self-induced pain we should/could do better about; for example, programmatic CI systems and VM managers should introduce entropy from the host for individual VM instances. This is considered a future work item. On modern x86 and Power9 systems, this may be wholly unnecessary after D19928 lands (even in the non-ideal case where early /boot/entropy is unavailable), because they have fast hardware random sources available early in boot. But D19928 is not yet landed and we have a host of architectures which do not provide fast random sources. This change adds several tunables and diagnostic sysctls, documented thoroughly in UPDATING and sys/dev/random/random_infra.c. PR: 230875 (reopens) Reported by: adrian, jhb, imp, and probably others Reviewed by: delphij, imp (earlier version), markm (earlier version) Discussed with: adrian Approved by: secteam(delphij) Relnotes: yeah Security: related Differential Revision: https://reviews.freebsd.org/D19944 |
||
---|---|---|
.. | ||
build.sh | ||
darn.c | ||
fortuna.c | ||
fortuna.h | ||
hash.c | ||
hash.h | ||
ivy.c | ||
nehemiah.c | ||
other_algorithm.c | ||
other_algorithm.h | ||
random_harvestq.c | ||
random_harvestq.h | ||
random_infra.c | ||
randomdev.c | ||
randomdev.h | ||
uint128.h | ||
unit_test.c | ||
unit_test.h |