Last Minute Random/RNG Updates Land In Linux 5.18

Written by Michael Larabel in Linux Kernel on 1 April 2022 at 05:38 AM EDT. Add A Comment
LINUX KERNEL
While Jason Donenfeld is known for his splendid work on the open-source WireGuard secure network tunnel technology, lately he's been driving a number of improvements into the random/RNG code for the Linux kernel.

In addition to the many random/RNG improvements already merged last week into Linux 5.18 (and the /dev/urandom unification that had to be backed out for now), he sent in a secondary set of random updates for this new kernel version.

Linus Torvalds already merged these secondary RNG updates from Donenfeld. The feature highlights for this latest work includes:

- When a hardware RNG passes a large enough chunk of entropy during early boot, the Linux kernel will now skip the fast init path and go ahead and just fully initialize the RNG right away. This ultimately makes enabling CONFIG_RANDOM_TRUST_BOOTLOADER have a useful effect.

- The run-time boot option of random.trust_bootloader= is added as a run-time knob alternative to the build-time CONFIG_RANDOM_TRUST_BOOTLOADER option for whether to pass the seed passed by the bootloader for fully seeding the kernel CRNG. This complements as well the existing random.trust_cpu= option.

- Adding the spec compliant ACPI CID for the VMGENID work for better VM security.

- Restoring build-time randomness via the latest entropy plug-in.

More details on these changes via this Git merge.
Add A Comment
Related News
Linux 6.6.66 LTS Kernel Released With New Hardware Support & Many Fixes
NTSYNC Linux Driver Updated With API Design Improvements
New Linux Patch Establishes "CONFIG_X86_64_NATIVE" For -march=native Kernel Builds
Perf Support For 2,048 CPU Cores Is Becoming Not Enough - Patches Bump Kernel Limit
Linux 6.13-rc2 Released With An Initial Batch Of Fixes
Linux EFI Zboot Abandoning "Compression Library Museum", Focusing On Gzip & Zstd
About The Author
Michael Larabel

Michael Larabel is the principal author of Phoronix.com and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and OpenBenchmarking.org automated benchmarking software. He can be followed via Twitter, LinkedIn, or contacted via MichaelLarabel.com.

Popular News This Week
OpenWrt Affected By Security Issue That Could Have Led To Compromised Build Artifacts
How AMD Is Taking Standard C/C++ Code To Run Directly On GPUs
Linux EFI Zboot Abandoning "Compression Library Museum", Focusing On Gzip & Zstd
Ptyxis Becomes Ubuntu's Recommended Replacement To GNOME Terminal
GNU Shepherd 1.0 Service Manager Released As "Solid Tool" Alternative To systemd
KDE Starts December By Landing A Number Of New Features
NTSYNC Linux Patches Revived To Help Boost Steam Play Gaming Performance
Rust-Based, Memory-Safe PNG Decoders "Vastly Outperform" C-Based PNG Libraries