> So I think that if we just made the code be much less trusting (say,
> consider the TSC information per interrupt to give only a single bit of
> entropy, for example), and coupled that with making network devices always
> be considered sources of entropy, we'd have a reasonable balance.
I think that sounds good.
I have a patch which I can send - it needs to be rediffed I suspect -
that has each network device feed the entropy pool. (Actually, it
creates a new flag, SA_NET_RANDOM, that defines to SA_SAMPLE_RANDOM or 0
depending on a configure setting. If you want it unconditional, that is
just as easy though).
Robert Love
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/