On Wed, Jul 01, 2026 at 11:53:16AM +0900, Simon Richter wrote:
> Hi,
> 
> On 7/1/26 12:54 AM, Demi Marie Obenour wrote:
> 
> > That said, if the crypto_rng support is to remain, should it have a
> > non-empty allowlist for privileged processes?  Otherwise, it's dead code
> > with the default sysctl value.
[...]
> I think that embedded systems will still use this code until a better
> alternative exists, so it's not entirely dead, and the best way to get rid
> of it is to build something better.

/dev/urandom, /dev/random, and /dev/hwrng.  I.e. what userspace
*actually* uses already.  algif_rng is a redundant, much harder to use
interface that got added off to the side for some reason.

- Eric

Reply via email to