On 2/20/20 6:10 PM, Stefan Reiter wrote: > Add the ability to provice entropy to QEMU guests via an emulated hardware > RNG. > > First patch in pve-manager is independent. Rest depends on new qemu-server for > the API, I left 'onlineHelp' as a FIXME to avoid the dependecy to pve-docs. > > I looked closely at how Linux and QEMU handle entropy/randomness to make sure > it's fine to allow /dev/urandom by default, and I'm quite certain that it > poses > no issue at all (point in case: the kernel developers themselves are talking > about making /dev/random behave like /dev/urandom after the system has booted > [0], which we can always assume to be the case for VMs). I included more > rational in the qemu-server commit message. > > The benefit of this is of course that we don't have to worry about host > entropy > starvation nearly as much. It's still documented and the user is warned if > they > choose /dev/random in the GUI though. > > [0] https://lwn.net/Articles/808575/ >
This was a wish since quite a bit, but the last approach wanted it to add always, which wasn't considered a good idea. This looks better, thanks applied all but the docs patch. _______________________________________________ pve-devel mailing list pve-devel@pve.proxmox.com https://pve.proxmox.com/cgi-bin/mailman/listinfo/pve-devel
