More Than Five Years In The Making: Creating A New Linux Random Number Generator
Stephan Müller today posted his latest patch series for LRNG as his proposed new approach for handling /dev/random while being a drop-in replacement with API/ABI compatibility to the existing generator.
LRNG aims to be faster by "up to 130%" compared to the current /dev/random along with a variety of other performance optimizations, various crypto handling improvements, improved testing abilities, greater configurability of options, and is of a more modern design.
The v41 patches of LRNG have a clean-up of the initial seeding code, zeroize the seed buffer, initialize the entropy value if there is insufficient entropy, harden the entropy source configuration, and a variety of other low-level improvements to this random number generator code.
It remains to be seen if/when LRNG will finally be deemed ready for mainline, but those curious about this long journey around a new Linux random number generator implementation can find today's 13 patch series on the kernel mailing list.