From owner-svn-src-all@freebsd.org Thu Jul 2 18:41:59 2015 Return-Path: Delivered-To: svn-src-all@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 38342993E0A; Thu, 2 Jul 2015 18:41:59 +0000 (UTC) (envelope-from markm@FreeBSD.org) Received: from gromit.grondar.org (grandfather.grondar.org [IPv6:2a01:348:0:15:5d59:5c20:0:2]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id EFD7D2319; Thu, 2 Jul 2015 18:41:58 +0000 (UTC) (envelope-from markm@FreeBSD.org) Received: from graveyard.grondar.org ([88.96.155.33] helo=gronkulator.grondar.org) by gromit.grondar.org with esmtpsa (TLSv1:DHE-RSA-AES256-SHA:256) (Exim 4.85 (FreeBSD)) (envelope-from ) id 1ZAjQo-0003E3-Nh; Thu, 02 Jul 2015 19:41:55 +0100 Subject: Re: svn commit: r284959 - in head: . share/man/man4 share/man/man9 sys/conf sys/dev/glxsb sys/dev/hifn sys/dev/random sys/dev/rndtest sys/dev/safe sys/dev/syscons sys/dev/ubsec sys/dev/virtio/random sy... Mime-Version: 1.0 (Mac OS X Mail 8.2 \(2102\)) Content-Type: text/plain; charset=utf-8 From: Mark R V Murray In-Reply-To: <22423.1435862187@chaos> Date: Thu, 2 Jul 2015 19:41:48 +0100 Cc: src-committers@FreeBSD.org, svn-src-all@FreeBSD.org, svn-src-head@FreeBSD.org, amesh@juniper.net, stevek@juniper.net Content-Transfer-Encoding: quoted-printable Message-Id: <284B5FB4-F487-4FBA-ABE6-D163065AFD1B@FreeBSD.org> References: <201506301700.t5UH0jPq001498@svn.freebsd.org> <13981.1435792025@chaos> <5238A439-F25E-40F1-96D4-140460003982@FreeBSD.org> <22423.1435862187@chaos> To: "Simon J. Gerraty" X-Mailer: Apple Mail (2.2102) X-SA-Score: -1.0 X-BeenThere: svn-src-all@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: "SVN commit messages for the entire src tree \(except for " user" and " projects" \)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 02 Jul 2015 18:41:59 -0000 > On 2 Jul 2015, at 19:36, Simon J. Gerraty wrote: >=20 > Mark R V Murray wrote: >>>> - Remove; plugability is no longer used. Compile-time algorithm >>>> selection is the way to go. >>>=20 >>> Errr we use that and need it. >>> Please put it back. >>=20 >> Do you really need full the plugability (including run-time selection >> of algorithm), or do you just need to have KLD modules back? >=20 > We need KLD for sure, and the ablity to leave out a mixer like > yarrow/fortuna - we do not expect any of our customers (except those > forced to by govt) to use that arrangement though. Excellent! :-) >> I intend to do the latter, but in a different way. The adaptor code >> and run-time section was a locking liability. >>=20 >>> Whether we agree with NIST's ideas about how randomness should be >>> handled or not, we need to to be able to comply and we do not want = to >>> burn their desired arrangement into our kernels. >>=20 >> Sound like you just need to be able to select a single KLD at boot = time? >=20 > Quite possibly. >=20 > Will confirm=E2=80=A6 Great, thanks! If so, can I confirm that you may be rolling your own non-Yarrow/Fortuna mixer(s)? M --=20 Mark R V Murray