From owner-svn-src-svnadmin@FreeBSD.ORG  Thu Sep 19 18:17:07 2013
Return-Path: <owner-svn-src-svnadmin@FreeBSD.ORG>
Delivered-To: svn-src-svnadmin@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115])
 (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTP id 44F4EB1E;
 Thu, 19 Sep 2013 18:17:07 +0000 (UTC) (envelope-from jhb@freebsd.org)
Received: from bigwig.baldwin.cx (bigwig.baldwin.cx [IPv6:2001:470:1f11:75::1])
 (using TLSv1 with cipher ADH-CAMELLIA256-SHA (256/256 bits))
 (No client certificate requested)
 by mx1.freebsd.org (Postfix) with ESMTPS id 1E9E82F1A;
 Thu, 19 Sep 2013 18:17:07 +0000 (UTC)
Received: from jhbbsd.localnet (unknown [209.249.190.124])
 by bigwig.baldwin.cx (Postfix) with ESMTPSA id BE47EB987;
 Thu, 19 Sep 2013 14:17:05 -0400 (EDT)
From: John Baldwin <jhb@freebsd.org>
To: Edward Tomasz Napierala <trasz@freebsd.org>
Subject: Re: svn commit: r255628 - svnadmin/conf
Date: Thu, 19 Sep 2013 11:22:37 -0400
User-Agent: KMail/1.13.5 (FreeBSD/8.4-CBSD-20130906; KDE/4.5.5; amd64; ; )
References: <201309170843.r8H8hCaE092908@svn.freebsd.org>
In-Reply-To: <201309170843.r8H8hCaE092908@svn.freebsd.org>
MIME-Version: 1.0
Content-Type: Text/Plain;
  charset="utf-8"
Content-Transfer-Encoding: 7bit
Message-Id: <201309191122.37616.jhb@freebsd.org>
X-Greylist: Sender succeeded SMTP AUTH, not delayed by milter-greylist-4.2.7
 (bigwig.baldwin.cx); Thu, 19 Sep 2013 14:17:05 -0400 (EDT)
Cc: svn-src-all@freebsd.org, src-committers@freebsd.org,
 svn-src-svnadmin@freebsd.org
X-BeenThere: svn-src-svnadmin@freebsd.org
X-Mailman-Version: 2.1.14
Precedence: list
List-Id: SVN commit messages for the admin / configuration tree
 <svn-src-svnadmin.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/svn-src-svnadmin>, 
 <mailto:svn-src-svnadmin-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/svn-src-svnadmin>
List-Post: <mailto:svn-src-svnadmin@freebsd.org>
List-Help: <mailto:svn-src-svnadmin-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/svn-src-svnadmin>, 
 <mailto:svn-src-svnadmin-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 19 Sep 2013 18:17:07 -0000

On Tuesday, September 17, 2013 4:43:12 am Edward Tomasz Napierala wrote:
> Author: trasz
> Date: Tue Sep 17 08:43:12 2013
> New Revision: 255628
> URL: http://svnweb.freebsd.org/changeset/base/255628
> 
> Log:
>   Explicitly require Security Officer's approval for kernel PRNG bits.
>   
>   Note that there is ongoing discussion about approval requirement
>   for userland PRNG bits.

Rather, so's approval definitely is required for userland PRNG bits.  It is 
currently not easy to express this in the approvers file without individually 
listing various files.  If at some point the files are rearranged to make the 
approvers entry simple to add, then so will add one.  However, all PRNG 
commits must be approved by so whether in userland or the kernel.

-- 
John Baldwin