| 2018-08-30 09:28:17 |
Kashyap Chamarthy |
description |
When do we want it: By default!
Nova don't add a RNG to the guests by default; this seems a serious problem - the guests should get a good entropy source to ensure that everything during boot gets randomised, and also you sometimes get hangs where guests are starved of entropy (there are some newer guest kernels that seem more prone to this, but still it's a more general problem).
Old arguments for why we didn't have a virtio-rng by default:
a) We were using hosts /dev/random and it could block - we moved to urandom and that problem doesn't exist any more
b) We didn't have windows drivers? We do now
(IMHO this is fairly important - we really should have the RNG) |
What do we want: Entropy!
When do we want it: By default!
Nova don't add a RNG to the guests by default; this seems a serious problem - the guests should get a good entropy source to ensure that everything during boot gets randomised, and also you sometimes get hangs where guests are starved of entropy (there are some newer guest kernels that seem more prone to this, but still it's a more general problem).
Old arguments for why we didn't have a virtio-rng by default:
a) We were using hosts /dev/random and it could block - we moved to urandom and that problem doesn't exist any more
b) We didn't have windows drivers? We do now
(IMHO this is fairly important - we really should have the RNG) |
|
