> > > The answer is to have API's like (rte_csrand) which then call the OS > > > level primitives. The trust is then passed to the OS. I trust Linus, > > > Theo de Raadt, and the rest of the open OS community to evaluate and > > > integrate the best secure random number generator. > > > > Perhaps, you missed my previous email, I understand your concern. Is > > it acceptable to you if rte_csrand uses the kernel RNG by default and > > has a build/run-time parameter to switch to HW RNG for those who > consciously make that decision? > > No, because then DPDK is endorsing use of HW RNG as sole source of > randomness. > If someone really, really wants to do that they can put in their own code in > their own application.
How does HW RNG become the sole source of randomness if the default is kernel's implementation of CSRNG? As far as I understand, endorsing is not same as optionality.
