On Mon, 26 Jun 2023 at 07:08, Jason A. Donenfeld <Jason@xxxxxxxxx> wrote:
>
> EFI has a rather unique benefit that it has access to some limited
> non-volatile storage, where the kernel can store a random seed. Register
> a notification for when the RNG is initialized, and at that point, store
> a new random seed.
No.
We DO NOT DO THIS DURING EARLY BOOT.
Christ.
Stop the craziness. We already know that the machine that had problems
with this seems to literally have been problematic due to boot-time
issues, but worked after boot.
Now, I had hoped that Sami's test would have uncovered some smoking
gun actually explaining it, but that was not to be.
There's quite possibly some random ordering thing, but the fundamental
facts here are
(a) early boot is hard to debug
(b) there is absolutely no reason to do it during boot
(c) entropy is at its weakest during boot
so there is no way in hell we are doing this thing during bootup, and
absolutely none of that has changed by checking some minimum EFI
version.
Don't ever re-send this crap again, ok?
Linus
