From owner-svn-src-all@freebsd.org Thu Jul 2 18:36:53 2015 Return-Path: Delivered-To: svn-src-all@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id F2CE8993CCE; Thu, 2 Jul 2015 18:36:53 +0000 (UTC) (envelope-from sjg@juniper.net) Received: from na01-bn1-obe.outbound.protection.outlook.com (mail-bn1bn0102.outbound.protection.outlook.com [157.56.110.102]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (Client CN "mail.protection.outlook.com", Issuer "MSIT Machine Auth CA 2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 52B851E26; Thu, 2 Jul 2015 18:36:51 +0000 (UTC) (envelope-from sjg@juniper.net) Received: from BY1PR0501CA0034.namprd05.prod.outlook.com (10.162.139.44) by BLUPR05MB707.namprd05.prod.outlook.com (10.141.207.19) with Microsoft SMTP Server (TLS) id 15.1.195.15; Thu, 2 Jul 2015 18:36:44 +0000 Received: from BN1AFFO11FD047.protection.gbl (2a01:111:f400:7c10::121) by BY1PR0501CA0034.outlook.office365.com (2a01:111:e400:4821::44) with Microsoft SMTP Server (TLS) id 15.1.207.19 via Frontend Transport; Thu, 2 Jul 2015 18:36:43 +0000 Authentication-Results: spf=softfail (sender IP is 66.129.239.18) smtp.mailfrom=juniper.net; FreeBSD.org; dkim=none (message not signed) header.d=none; Received-SPF: SoftFail (protection.outlook.com: domain of transitioning juniper.net discourages use of 66.129.239.18 as permitted sender) Received: from p-emfe01b-sac.jnpr.net (66.129.239.18) by BN1AFFO11FD047.mail.protection.outlook.com (10.58.53.62) with Microsoft SMTP Server (TLS) id 15.1.190.9 via Frontend Transport; Thu, 2 Jul 2015 18:36:43 +0000 Received: from magenta.juniper.net (172.17.27.123) by p-emfe01b-sac.jnpr.net (172.24.192.21) with Microsoft SMTP Server (TLS) id 14.3.123.3; Thu, 2 Jul 2015 11:36:30 -0700 Received: from chaos.jnpr.net (chaos.jnpr.net [172.21.16.28]) by magenta.juniper.net (8.11.3/8.11.3) with ESMTP id t62IaRD68994; Thu, 2 Jul 2015 11:36:27 -0700 (PDT) (envelope-from sjg@juniper.net) Received: from chaos (localhost [127.0.0.1]) by chaos.jnpr.net (Postfix) with ESMTP id 948C4580AA; Thu, 2 Jul 2015 11:36:27 -0700 (PDT) To: Mark R V Murray CC: , , , , Subject: Re: svn commit: r284959 - in head: . share/man/man4 share/man/man9 sys/conf sys/dev/glxsb sys/dev/hifn sys/dev/random sys/dev/rndtest sys/dev/safe sys/dev/syscons sys/dev/ubsec sys/dev/virtio/random sy... In-Reply-To: <5238A439-F25E-40F1-96D4-140460003982@FreeBSD.org> References: <201506301700.t5UH0jPq001498@svn.freebsd.org> <13981.1435792025@chaos> <5238A439-F25E-40F1-96D4-140460003982@FreeBSD.org> Comments: In-reply-to: Mark R V Murray message dated "Thu, 02 Jul 2015 07:59:11 +0100." From: "Simon J. Gerraty" X-Mailer: MH-E 8.0.3; nmh 1.3; GNU Emacs 22.3.1 Date: Thu, 2 Jul 2015 11:36:27 -0700 Message-ID: <22423.1435862187@chaos> MIME-Version: 1.0 Content-Type: text/plain X-EOPAttributedMessage: 0 X-Microsoft-Exchange-Diagnostics: 1; BN1AFFO11FD047; 1:D3S25bxcYxQmSJ9oZmeRtsTnAXBLlswyQ8P9dfQ6VShfbL7qhpbVecf1pqrgAcggj3tqnWxjHNWXa40G5k3f/B1yXCgRyCp2NRVPtANgXWknMzYCS6xW++H/SYpLhJ0UOYEeii9kBGSIZxok9NKNUgPVsCd4RrrBk5jzFnOiiBXXpigSPFs/qsl52qWfXzV5b1guFDuxVkF42vJGpGjFViSE7PXaGvvgzoSCBJbuJukfvojn16jjyXjuDxJYZubnSSjG5rDTu0j7DO3Bv1Jw3g== X-Forefront-Antispam-Report: CIP:66.129.239.18; CTRY:US; IPV:NLI; EFV:NLI; SFV:NSPM; SFS:(10019020)(6009001)(2980300002)(51704005)(24454002)(189002)(199003)(117636001)(105596002)(92566002)(50226001)(106466001)(110136002)(189998001)(2950100001)(5001960100002)(7520500002)(107886002)(76506005)(50986999)(57986006)(76176999)(50466002)(33716001)(48376002)(77156002)(62966003)(77096005)(450100001)(46102003)(47776003)(86362001)(87936001)(6806004)(19580395003)(19580405001)(62816006)(4001430100001)(42262002); DIR:OUT; SFP:1102; SCL:1; SRVR:BLUPR05MB707; H:p-emfe01b-sac.jnpr.net; FPR:; SPF:SoftFail; MLV:sfv; MX:1; A:1; LANG:en; X-Microsoft-Exchange-Diagnostics: 1; BLUPR05MB707; 2:DrIxwjNTsHgbPzoYuMTQf0Ct6nh22HVv7GkLQEzLqydAWLh09Q1D65eSHtKeSAg2; 3:I6kIPGAbtsdJYaJ9/xVQv9rzoYtoHSR/wHe80wqmBDqrnxEmMTclwfIea8v7+EKn3GPjA96Jlzkmg/TwG7n8hC3Xs40OgGzDfCNcVG9kPCpVfpoVLQo6NY1Tpef7d3hy8pLDZAMl+vIBVKDo6t4SuA/U0s11FQ4xbOC8mAw3K6NAaVx5fpygRF3rl4+4mqz4BSYcKrE5UN4qPHJKcZzlPCFZI5wREUpq3xnoD6bOlPQ=; 20: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 X-Microsoft-Antispam: UriScan:;BCL:0;PCL:0;RULEID:;SRVR:BLUPR05MB707; X-Microsoft-Antispam-PRVS: X-Exchange-Antispam-Report-Test: UriScan:; X-Exchange-Antispam-Report-CFA-Test: BCL:0; PCL:0; RULEID:(601004)(5005006)(3002001); SRVR:BLUPR05MB707; BCL:0; PCL:0; RULEID:; SRVR:BLUPR05MB707; X-Microsoft-Exchange-Diagnostics: 1; BLUPR05MB707; 4:M0RZl0IzcRyhEv0+gTQ7NxDhJzkroee0oNaDrGBVdwl4d9Pn0Vx4FJUC9dgY+qWHApBMj9jkKe2wASLfU0ftNsXAhaEvtThN4ClNicRyQRVxS2TG9f7Y3Krm27gM9VvaKp/xJlvlgzoMOZnPEKAhN/rqofbpfkg9Sovq+BCAvZKt4slN4qnUoD1gQu459ZYOBpILbb5Z4YWET5TZH/MOkKC2yWKGjNaQnp7ZAEk5pyTNJ4nB5tpL/IyvTEeoi4k2BjrCZhw1C0R4LC+tvANoFAfO9O5dAynHsf2sqtGn3rs= X-Forefront-PRVS: 06259BA5A2 X-Microsoft-Exchange-Diagnostics: =?us-ascii?Q?1; BLUPR05MB707; 23:8KbnlsKHvvQ8ZHG65BwYUgZ9QIpDAQ98cnd7d/N3UU?= =?us-ascii?Q?Yp1vNbDvepIAqEZmSszXhMfAHwtrwHeH3qrhigmlb3AJQ+7LJafDWGU/LRF9?= =?us-ascii?Q?3+cC3ntnDEf5z4q4Mr8A2/tl9eoFE6dOPyo3HzOtyk6Kw1F37X0s61Sc8Blq?= =?us-ascii?Q?xAEZmit762R30SHbg9gZtgY5Z9QOHeUmMlfl1ndDqSp+PZKb1gFce99DOF7Y?= =?us-ascii?Q?+dKrdpsZpz9HWnUIYKKARyTdFkHvM3tyDKjIrUXt1NjV3VsMyte0yQGLwUOJ?= =?us-ascii?Q?AjGW0Ezw15fqAxs5uicOP8rWvdoo2xFYy9XBxcQL5ObNOjWGRhP3O7GrX4vn?= =?us-ascii?Q?ZDJmD98vwlBQKADDsjG1XrDrtjCF7gZbZ64pijqb/DdFEZGFfiuQgsR1nIjn?= =?us-ascii?Q?HIWZvoJyzbQDaIBqvLJFe/l8o0t3Nq/4qWjZgF/U3/fOH1Nzq3b7xTae5d9j?= =?us-ascii?Q?qIlgLqEHjHUMniK7mrUa6c2HElvOe1Iocny6eRtcq9HDRqM3MN2qEELduJ/M?= =?us-ascii?Q?57oFeQGJ7IHD9t/h3PxaD4462k3Tt08cl0W7qLANxQCKxk5hj1dRhI76JQGH?= =?us-ascii?Q?hBQw6T7b8oogSYNzX5fvtXwAfeCGtPjV/lwPRYcQFpKE99DS9WTCjAlF5fWL?= =?us-ascii?Q?XiQJEwL+Uw9OzMb2hSwKvs/BYouec4Ef3EAmygJK9Kc9FVPzwC2DtLmTWm+0?= =?us-ascii?Q?Bdc5S/VFVXQEWHDGlW4s6Ju9iRdTy6FZN/7sXYZDfuFwq02NIyJEm1qR9uuT?= =?us-ascii?Q?wozvUDtVSQaofQ5NSU5fMxKM2RR7RZbxW0KE8U0hNPr4kxFWM+C+tIqV5y1H?= =?us-ascii?Q?VXp/sjAUPGo3XPcbfO/3jCgGm85LA2iN4ClDkT6rGPtQrUzo+mwMAknHfKom?= =?us-ascii?Q?QERnJxhMOdnf/phzTuTvpcdYyQluWkjnsHNOJEsMPMb4zXueVPnwBvkBWLLR?= =?us-ascii?Q?/gCYOU8s5LyggKdlwZFfx+EsYebcY6DrMdsVEATRPFOCb3SDbwqZS7ds7U+V?= =?us-ascii?Q?5SY48Angs7K9ww37a3g3Te?= X-Microsoft-Exchange-Diagnostics: 1; BLUPR05MB707; 5:G5rSCrw6dfxbU4ifuyDCKM8hx/cZK8pE316v7hnQgX3m2B4kLBgYOumVJ53nJxnJUSYR4X6suTOeXKP90fVUR5VQVu/pqKJVMZBRgZxkQZXcprOlxypZhN3/QYwulBd936/HO+QDfDZl+jvoyr9soQ==; 24:fvfMZmsCyvtsLLOOljGMOfaQdJrjt7DkkKG+vzJk8E4qlxCXu9au8PHg9TGItOvH+Wc1Vq3uTxLqWYt53Z58Uxp3rjwgQfPRBGq9oor1Gs4=; 20:G0nCXwAm+jtKNsGts+3HvVPbrfbHhCJjR+nSPPviehONFZcEWnPEdANoEN5d21S6XL/Av5ShfTJbpLB3pnSl9A== X-OriginatorOrg: juniper.net X-MS-Exchange-CrossTenant-OriginalArrivalTime: 02 Jul 2015 18:36:43.3816 (UTC) X-MS-Exchange-CrossTenant-Id: bea78b3c-4cdb-4130-854a-1d193232e5f4 X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=bea78b3c-4cdb-4130-854a-1d193232e5f4; Ip=[66.129.239.18]; Helo=[p-emfe01b-sac.jnpr.net] X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem X-MS-Exchange-Transport-CrossTenantHeadersStamped: BLUPR05MB707 X-BeenThere: svn-src-all@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: "SVN commit messages for the entire src tree \(except for " user" and " projects" \)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 02 Jul 2015 18:36:54 -0000 Mark R V Murray wrote: > >> - Remove; plugability is no longer used. Compile-time algorithm > >> selection is the way to go. > > > > Errr we use that and need it. > > Please put it back. > > Do you really need full the plugability (including run-time selection > of algorithm), or do you just need to have KLD modules back? We need KLD for sure, and the ablity to leave out a mixer like yarrow/fortuna - we do not expect any of our customers (except those forced to by govt) to use that arrangement though. > I intend to do the latter, but in a different way. The adaptor code > and run-time section was a locking liability. > > > Whether we agree with NIST's ideas about how randomness should be > > handled or not, we need to to be able to comply and we do not want to > > burn their desired arrangement into our kernels. > > Sound like you just need to be able to select a single KLD at boot time? Quite possibly. Will confirm... Thanks --sjg