[pve-devel] [PATCH 0/5] fix #2264: add virtio-rng device
Thomas Lamprecht
t.lamprecht at proxmox.com
Fri Mar 6 18:45:21 CET 2020
On 2/20/20 6:10 PM, Stefan Reiter wrote:
> Add the ability to provice entropy to QEMU guests via an emulated hardware RNG.
>
> First patch in pve-manager is independent. Rest depends on new qemu-server for
> the API, I left 'onlineHelp' as a FIXME to avoid the dependecy to pve-docs.
>
> I looked closely at how Linux and QEMU handle entropy/randomness to make sure
> it's fine to allow /dev/urandom by default, and I'm quite certain that it poses
> no issue at all (point in case: the kernel developers themselves are talking
> about making /dev/random behave like /dev/urandom after the system has booted
> [0], which we can always assume to be the case for VMs). I included more
> rational in the qemu-server commit message.
>
> The benefit of this is of course that we don't have to worry about host entropy
> starvation nearly as much. It's still documented and the user is warned if they
> choose /dev/random in the GUI though.
>
> [0] https://lwn.net/Articles/808575/
>
This was a wish since quite a bit, but the last approach wanted it to add
always, which wasn't considered a good idea.
This looks better, thanks applied all but the docs patch.
More information about the pve-devel
mailing list