From owner-freebsd-arch@FreeBSD.ORG  Wed Aug 22 07:02:52 2012
Return-Path: <owner-freebsd-arch@FreeBSD.ORG>
Delivered-To: freebsd-arch@freebsd.org
Received: from mx2.freebsd.org (mx2.freebsd.org [IPv6:2001:4f8:fff6::35])
	by hub.freebsd.org (Postfix) with ESMTP id EEFFF106564A
	for <freebsd-arch@freebsd.org>; Wed, 22 Aug 2012 07:02:52 +0000 (UTC)
	(envelope-from dougb@FreeBSD.org)
Received: from [127.0.0.1] (hub.freebsd.org [IPv6:2001:4f8:fff6::36])
	by mx2.freebsd.org (Postfix) with ESMTP id 0E50614E7D1;
	Wed, 22 Aug 2012 07:02:49 +0000 (UTC)
Message-ID: <50348419.8060604@FreeBSD.org>
Date: Wed, 22 Aug 2012 00:02:49 -0700
From: Doug Barton <dougb@FreeBSD.org>
Organization: http://www.FreeBSD.org/
User-Agent: Mozilla/5.0 (Windows NT 5.1;
	rv:14.0) Gecko/20120713 Thunderbird/14.0
MIME-Version: 1.0
To: Gleb Kurtsou <gleb.kurtsou@gmail.com>
References: <CAG5KPzz4GQ2C_ky_qrDroQ4srGL4daW0OO-F3eOvvL-9AO6zoQ@mail.gmail.com>
	<20120820220243.GA96700@troutmask.apl.washington.edu>
	<CAG5KPzwBzWvDFDZqzT4masbknKfVe-rvdTd1h6ZxEoG90Rcxqg@mail.gmail.com>
	<20120820225504.GA78528@server.rulingia.com>
	<5033346C.3080907@FreeBSD.org>
	<20120821073931.GA99502@troutmask.apl.washington.edu>
	<CAG5KPzxd16k12adjsbtF5S7XTYk61rkv903nUc0ub=c0bHBKCg@mail.gmail.com>
	<20120822052221.GA1692@reks>
In-Reply-To: <20120822052221.GA1692@reks>
X-Enigmail-Version: 1.4.3
OpenPGP: id=1A1ABC84
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
Cc: Ben Laurie <ben@links.org>, Steve Kargl <sgk@troutmask.apl.washington.edu>,
	freebsd-arch@freebsd.org
Subject: Re: /dev/random
X-BeenThere: freebsd-arch@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Discussion related to FreeBSD architecture <freebsd-arch.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-arch>,
	<mailto:freebsd-arch-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-arch>
List-Post: <mailto:freebsd-arch@freebsd.org>
List-Help: <mailto:freebsd-arch-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-arch>,
	<mailto:freebsd-arch-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 22 Aug 2012 07:02:53 -0000

On 8/21/2012 10:22 PM, Gleb Kurtsou wrote:
> In my experience using *single* explicit entropy source was often a
> requirement. In some cases it was even forbidden to use internal PRNG of
> any sort, you had to wait for external randomness to become available.
> Anyway mixing several entropy sources was never acceptable. You either
> have good entropy/randomness source or not.

Been there, done that. :)  Hence my suggestion that we make it possible
for a dedicated device to be the sole feeder for /dev/random as one of
the three possible options.

Doug

-- 

    I am only one, but I am one.  I cannot do everything, but I can do
    something.  And I will not let what I cannot do interfere with what
    I can do.
			-- Edward Everett Hale, (1822 - 1909)