Hi Ted, On Wed, Jun 21, 2017 at 10:38 PM, Theodore Ts'o <tytso@xxxxxxx> wrote: > I agree completely with all of this. The following patch replaces the > current topmost patch on the random.git tree: > For developers who want to work on improving this situation, > CONFIG_WARN_UNSEEDED_RANDOM has been renamed to > CONFIG_WARN_ALL_UNSEEDED_RANDOM. By default the kernel will always > print the first use of unseeded randomness. This way, hopefully the > security obsessed will be happy that there is _some_ indication when > the kernel boots there may be a potential issue with that architecture > or subarchitecture. To see all uses of unseeded randomness, > developers can enable CONFIG_WARN_ALL_UNSEEDED_RANDOM. Seems fine to me. Acked-by: Jason A. Donenfeld <Jason@xxxxxxxxx> Jason
