On 4/16/17 08:30, Rodney W. Grimes wrote: >> >>> On 16 Apr 2017, at 13:07, Rodney W. Grimes <free...@pdx.rh.cn85.dnsmgr.net> >>> wrote: >>> >>>>> From replacing the rc4 algorithm with chacha20, this chalice has now >>>> become poisoned with the job of redesigning the entire structure of >>>> kernel random-number generation. >>>> >>>> This may take a while, and I'm already behind on RNG jobs. >>> >>> I do not see how this is a complete redesign of RNG, and if it is >>> such a heart ache to change algorithms in this code then it probably >>> should be redesigned? >> >> The RC4 algorithm is standard. Making the alogorithm pluggable means more >> code, more testing and more time (time which I am rather short of). > > I would rather see a proper implementation later, than a poor design > decision today.
I don't see how not supporting pluggable algorithm for the kernel arc4andom() a poor design decision. We are supposed to make good algorithm choices, making it pluggable would only make the code much more bloated (to make the load/unload PRNG seeding right), less efficient (to allow caller to safely call the interfaces) for something that system administrators should never fiddle with. Cheers,
signature.asc
Description: OpenPGP digital signature
