On Thu, 2005-03-24 at 23:48 -0500, Jeff Garzik wrote: > > And how HIFN driver can contribute entropy? > > Use the current chrdev->rngd method. Why HIFN must be chardev? > > You may say, that hardware can be broken and thus produces > > wrong data, but if user want, it can turn it on or off. > > The user cannot know the data is bad unless it is constantly being > validated. The user can not use HW crypto processors, since he does not know if HW is broken or not, and thus must validate each crypto operation, i.e. reencrypt data in SW. Not the point. Validation can be performed in other HW (like Xilinx which routes HW requests to the real devices), or in driver (if it is not FIPS validation). So I still insist on creating ability to contribute entropy directly, without userspace validation. It will be turned off by default. > Jeff -- Evgeniy Polyakov Crash is better than data corruption -- Arthur Grabowski
Attachment:
signature.asc
Description: This is a digitally signed message part
- Follow-Ups:
- References:
- [PATCH] API for true Random Number Generators to add entropy (2.6.11)
- From: David McCullough <[email protected]>
- Re: [PATCH] API for true Random Number Generators to add entropy (2.6.11)
- From: Evgeniy Polyakov <[email protected]>
- Re: [PATCH] API for true Random Number Generators to add entropy (2.6.11)
- From: Jeff Garzik <[email protected]>
- Re: [PATCH] API for true Random Number Generators to add entropy (2.6.11)
- From: David McCullough <[email protected]>
- Re: [PATCH] API for true Random Number Generators to add entropy (2.6.11)
- From: Evgeniy Polyakov <[email protected]>
- Re: [PATCH] API for true Random Number Generators to add entropy (2.6.11)
- From: Jeff Garzik <[email protected]>
- Re: [PATCH] API for true Random Number Generators to add entropy (2.6.11)
- From: Evgeniy Polyakov <[email protected]>
- Re: [PATCH] API for true Random Number Generators to add entropy (2.6.11)
- From: Jeff Garzik <[email protected]>
- [PATCH] API for true Random Number Generators to add entropy (2.6.11)
- Prev by Date: Re: [PATCH scsi-misc-2.6 08/08] scsi: fix hot unplug sequence
- Next by Date: Re: [PATCH 1/6] freepgt: free_pgtables use vma list
- Previous by thread: Re: [PATCH] API for true Random Number Generators to add entropy (2.6.11)
- Next by thread: Re: [PATCH] API for true Random Number Generators to add entropy (2.6.11)
- Index(es):