Re: [DISCUSSION PATCH 00/41] random: possible ways towards NIST SP800-90B compliance

From: Jason A. Donenfeld
Date: Mon Sep 21 2020 - 04:16:54 EST

Next message: Eric Dumazet: "Re: [PATCH net-next] net: use in_softirq() to indicate the NAPI context in napi_consume_skb()"
Previous message: Catalin Marinas: "Re: linux-next: manual merge of the akpm-current tree with the arm64 tree"
In reply to: Nicolai Stange: "[RFC PATCH 04/41] random: drop 'reserved' parameter from extract_entropy()"
Next in thread: Stephan Mueller: "Re: [DISCUSSION PATCH 00/41] random: possible ways towards NIST SP800-90B compliance"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

I haven't looked into the details of this patchset yet, but your
description here indicates to me that this is motivated by FIPS
certification desires, which...worries me. I would like to rewrite the
RNG at some point, and I've started to work on a bunch of designs for
this (and proving them correct, too), but going about this via FIPS
certification or trying to implement some NIST specs is most certainly
the wrong way to go about this, will lock us into subpar crypto for
years, and is basically a waste of time.

Next message: Eric Dumazet: "Re: [PATCH net-next] net: use in_softirq() to indicate the NAPI context in napi_consume_skb()"
Previous message: Catalin Marinas: "Re: linux-next: manual merge of the akpm-current tree with the arm64 tree"
In reply to: Nicolai Stange: "[RFC PATCH 04/41] random: drop 'reserved' parameter from extract_entropy()"
Next in thread: Stephan Mueller: "Re: [DISCUSSION PATCH 00/41] random: possible ways towards NIST SP800-90B compliance"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]