On Mon, 11 May 2020, Michael van Elst wrote:
We only trust a HWRNG and the seed file because only these enter a non-zero value for entropy. I cannot configure any other source to do that.
Why can't we allow the user to configure/enable estimation on a per-source basis? The default can certainly be "disabled", but why not override? Just like any other super-user thing, there's no reason not to enable shoot-my-random-foot mode. +--------------------+--------------------------+-----------------------+ | Paul Goyette | PGP Key fingerprint: | E-mail addresses: | | (Retired) | FA29 0E3B 35AF E8AE 6651 | p...@whooppee.com | | Software Developer | 0786 F758 55DE 53BA 7731 | pgoye...@netbsd.org | +--------------------+--------------------------+-----------------------+
