Re: FYI/RFC: early-rng-init-tools
- Date: Sun, 24 Feb 2019 20:10:11 +0000 (UTC)
- From: Thorsten Glaser <tg@xxxxxxxxxx>
- Subject: Re: FYI/RFC: early-rng-init-tools
>FTR this is supposedly fixed on the main architectures featuring an RNG
>in the CPU by linux 4.19.20-1, which enabled RANDOM_TRUST_CPU. Which Ben
that’s what I referred to by…
>>• it does not use/add CPU RNG output where present
>> ‣ though Linux can now do that itself, some command-line flag…
… but that only helps if the CPU has such instructions, and you
trust them sufficiently.
My package is useful for a lot of the other cases.
<diogenese> Beware of ritual lest you forget the meaning behind it.
<igli> yeah but it means if you really care about something, don't
ritualise it, or you will lose it. don't fetishise it, don't
obsess. or you'll forget why you love it in the first place.