Received: by 2002:a05:6a10:206:0:0:0:0 with SMTP id 6csp245861pxj; Thu, 10 Jun 2021 21:02:00 -0700 (PDT) X-Google-Smtp-Source: ABdhPJz1isvJB8vbpEfvfwzrDyjUOTBC054M6iUzLw4kSgzojsV5K3hq8W9LRg4uF+fcoYQ8Nt8r X-Received: by 2002:a17:906:14d1:: with SMTP id y17mr1606264ejc.365.1623384120239; Thu, 10 Jun 2021 21:02:00 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1623384120; cv=none; d=google.com; s=arc-20160816; b=viiw6u0183wWFHVEGy2TVN10GHuq9HhIljgxyYeNxzldgL4QmdCtiXLukKi6+q/Y0L D6xXBLMONGV5wUQgkgbiFpx+UzuX9V558qYh2p57WQ61FyETg47J6VncvLj+Jlhqbn01 iO0OtkSKzbMfi++NRkYDc27LDZnbwEgl02cehG14e1uJ5zaiek2ArW98RLU8H6OMs2a+ fNrkIknPFEyUnjZsUBBgeulPNNwpDbGmh+V5UznHgk7vwWyFN8YTGAhzHwdbkMrSL5Nb qCZvDBunnnd2zI8OhsGaU/vgBdIyC5TjC7JWnM2fCB6VwmM6vm0XjFpACWE0HQcpkd8X 6DuQ== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:to:subject:message-id:date:from:in-reply-to :references:mime-version:dkim-signature; bh=spNifO7CMCVLxoGBh5rTw2gyoH/VU9wB+1EGF7V1ah4=; b=nt8gt2AnH544ppdfDt90MzITfgX95u+wv8ZJv0cBHqI6EK6A7VLxEF2RAqtyJ8L+Ks tGveCE/CBnSdbOWVYdK16POyqTqoecJ1/oDIGwfw8tjZpAXoFD8pHxnahbpHQORbbhBu wzGzTp5lRI94xUmR6f8qpn4AlMkeijIs1RCzrcC58B+zPM3kNn2KgDBLtvJJKqhGy3ME XKU1DbaKWP3CdrPTiYX8QbNCSx296k8MoznVA14TYMevyKZu8XsWawT0H7qdwNALAhHQ /X/yQuux0Ug952TbvWpeZ1SJOwyPQf1rAMvIHtTynodnS/pGm3LHvZu0wKkU8+lgNc3H M/JQ== ARC-Authentication-Results: i=1; mx.google.com; dkim=pass header.i=@gmail.com header.s=20161025 header.b=ZA7XbJ3Q; spf=pass (google.com: domain of linux-crypto-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-crypto-owner@vger.kernel.org; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Return-Path: Received: from vger.kernel.org (vger.kernel.org. [23.128.96.18]) by mx.google.com with ESMTP id 4si3820362ejb.4.2021.06.10.21.01.23; Thu, 10 Jun 2021 21:02:00 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-crypto-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) client-ip=23.128.96.18; Authentication-Results: mx.google.com; dkim=pass header.i=@gmail.com header.s=20161025 header.b=ZA7XbJ3Q; spf=pass (google.com: domain of linux-crypto-owner@vger.kernel.org designates 23.128.96.18 as permitted sender) smtp.mailfrom=linux-crypto-owner@vger.kernel.org; dmarc=pass (p=NONE sp=QUARANTINE dis=NONE) header.from=gmail.com Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S229582AbhFKEDT (ORCPT + 99 others); Fri, 11 Jun 2021 00:03:19 -0400 Received: from mail-wr1-f53.google.com ([209.85.221.53]:47024 "EHLO mail-wr1-f53.google.com" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S229480AbhFKEDS (ORCPT ); Fri, 11 Jun 2021 00:03:18 -0400 Received: by mail-wr1-f53.google.com with SMTP id a11so4454055wrt.13 for ; Thu, 10 Jun 2021 21:01:06 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to; bh=spNifO7CMCVLxoGBh5rTw2gyoH/VU9wB+1EGF7V1ah4=; b=ZA7XbJ3QtDmFVOHSvJm4q7hwVL7/zTSNhMrDZuAPOpOd8mV0oxPvTp4fMuz0huPkwV T+ySIku0MHtVu6Kuttd/IeuwgYWXgzigvV2JTnb5kKRIUVEjLky8VhZ2v7Bt8pvrPq1G Jr5DaPL5EkT7G24vlQ0QYX5UiffHNVwWmGaiAw9INgEK05XQrYuUcBO+vJ44oO103567 wPN1l+LQ074fdVAYFo6/Ooj+hx+VdlY2n5XckSUYo/A/hFqDQcvJS7aKpQlQ2fhbYzHl SejOnB2+itoyiMr5NZo8ZA/bTa2FcBrkF4vRr5SDH1fVRffKqazyJEZHm/iZeJG+wQH6 QHYw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to; bh=spNifO7CMCVLxoGBh5rTw2gyoH/VU9wB+1EGF7V1ah4=; b=SRL6Be+ytK54xro/dwvJuI2xDjl+5iElUmAkNxUdfucZBof+/OjxBzvHhK/yUrFuM5 RsOcphrBc+P56AK0C4B46TiaO01jRnSKVaJV7t4nSaUQouXKb8fvaYF8psJ3oufUMrg9 hFISwLSFPNgnuytv41DDOUloOiceehFbFKzIxqyDK4fhanvplxZY+xRXP445hAy8VGVI B8jA8XTCr3c6mKGbQ5VLKJTCoOs3wotNX+3Xp7kx1L2Kl2NPhYpR9ukZvcyYdUisgMpv 7Cw+OjnKeY3TqavE0HrR9POBjZwEQV7ccI2D4GnPlUxdsQaPmxWdaAfYZmxLcjLXZWQ6 NrDw== X-Gm-Message-State: AOAM530eR/N4WQ7pQpnWpnBVOS/go25DT7PraAJdcAHfAnrEz8o05Z14 uUgx9hLdMPONzzX+qM6DZV0NqNN7FJfLmObtONn3MN/jhfE= X-Received: by 2002:adf:f1c3:: with SMTP id z3mr1473133wro.375.1623384005667; Thu, 10 Jun 2021 21:00:05 -0700 (PDT) MIME-Version: 1.0 References: In-Reply-To: From: Sandy Harris Date: Fri, 11 Jun 2021 11:59:52 +0800 Message-ID: Subject: Re: Lockless /dev/random - Performance/Security/Stability improvement To: Linux Crypto Mailing List , "Ted Ts'o" , Stephan Mueller , John Denker Content-Type: text/plain; charset="UTF-8" Precedence: bulk List-ID: X-Mailing-List: linux-crypto@vger.kernel.org The basic ideas here look good to me; I will look at details later. Meanwhile I wonder what others might think, so I've added some to cc list. One thing disturbs me, wanting to give more control to "the user who should be free to choose their own security/performance tradeoff" I doubt most users, or even sys admins, know enough to make such choices. Yes, some options like the /dev/random vs /dev/urandom choice can be given, but I'm not convinced even that is necessary. Our objective should be to make the thing foolproof, incapable of being messed up by user actions.