svn commit: r346250 - in head: share/man/man4 share/man/man9 sys/dev/random sys/kern sys/libkern sys/sys
Conrad Meyer
cem at freebsd.org
Tue Sep 3 14:07:49 UTC 2019
On Tue, Apr 16, 2019 at 9:33 AM Warner Losh <imp at bsdimp.com> wrote:
> In that case, we're better off having a MD routine that gets called if there's no loader-provided entropy pool.
Yes, this is more or less the same plan I had. There's no need to add
anything MD specific; we already abstract MD random sources behind the
harvest mechanism.
> (and requiring an NV store is not even an option to require, so don't go there).
Systems lacking both an NV store and an entropy source available
during mi_startup (i.e., not interrupts...) cannot safely provide
entropy in early boot. On those systems, we must disable random
consumption during early boot.
> What we can't do is just hang if the loader can't provide an entropy pool.
I think we're all on the same page there.
Best,
Conrad
More information about the svn-src-all
mailing list