On Wed, Jul 01, 2026 at 11:53:16AM +0900, Simon Richter wrote: > Hi, > > On 7/1/26 12:54 AM, Demi Marie Obenour wrote: > > > That said, if the crypto_rng support is to remain, should it have a > > non-empty allowlist for privileged processes? Otherwise, it's dead code > > with the default sysctl value. [...] > I think that embedded systems will still use this code until a better > alternative exists, so it's not entirely dead, and the best way to get rid > of it is to build something better.
/dev/urandom, /dev/random, and /dev/hwrng. I.e. what userspace *actually* uses already. algif_rng is a redundant, much harder to use interface that got added off to the side for some reason. - Eric

