Page MenuHomeFreeBSD

random(4): Flip default Fortuna generator over to Chacha20
ClosedPublic

Authored by cem on Dec 19 2019, 8:03 PM.
Tags
None
Referenced Files
Unknown Object (File)
Mon, Nov 11, 8:19 AM
Unknown Object (File)
Oct 19 2024, 10:20 AM
Unknown Object (File)
Sep 27 2024, 1:54 AM
Unknown Object (File)
Sep 20 2024, 1:55 AM
Unknown Object (File)
Sep 19 2024, 4:07 PM
Unknown Object (File)
Sep 19 2024, 1:30 PM
Unknown Object (File)
Sep 18 2024, 3:48 PM
Unknown Object (File)
Sep 12 2024, 8:24 AM
Subscribers

Details

Summary

The implementation was landed in r344913 and has had some bake time (at
least on my personal systems). There is some discussion of the motivation
for defaulting to this cipher as a PRF in the commit log for r344913.

As documented in that commit, administrators can retain the prior mode of
operation by setting the 'kern.random.use_chacha20_cipher' tunable to 0 in
loader.conf(5).

Diff Detail

Lint
Lint Passed
Unit
No Test Coverage
Build Status
Buildable 28231
Build 26355: arc lint + arc unit

Event Timeline

Update the surrounding comments to match the modified default, as well.

markm added a subscriber: markm.

No-brainer.

This revision is now accepted and ready to land.Dec 19 2019, 11:52 PM
delphij added a subscriber: delphij.
delphij added inline comments.
sys/dev/random/hash.c
83

[OPTIONAL] I think eventually AES-ICM would be gone, it's probably better described as "old default", but I'm fine with the current change as-is too.

sys/dev/random/hash.c
83

I prefer to leave the documented options explicit for now; when and if we intend to remove AES-ICM, we will just remove the knob entirely, along with its documentation.