From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mails.dpdk.org (mails.dpdk.org [217.70.189.124]) by inbox.dpdk.org (Postfix) with ESMTP id 74E54456AB; Thu, 25 Jul 2024 17:03:42 +0200 (CEST) Received: from mails.dpdk.org (localhost [127.0.0.1]) by mails.dpdk.org (Postfix) with ESMTP id 62D4542F31; Thu, 25 Jul 2024 17:03:42 +0200 (CEST) Received: from mail-pg1-f180.google.com (mail-pg1-f180.google.com [209.85.215.180]) by mails.dpdk.org (Postfix) with ESMTP id 6E052402AB for ; Thu, 25 Jul 2024 16:56:49 +0200 (CEST) Received: by mail-pg1-f180.google.com with SMTP id 41be03b00d2f7-7a103ac7be3so666108a12.3 for ; Thu, 25 Jul 2024 07:56:49 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=networkplumber-org.20230601.gappssmtp.com; s=20230601; t=1721919408; x=1722524208; darn=dpdk.org; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:subject:cc:to:from:date:from:to:cc:subject:date :message-id:reply-to; bh=E+efLQ4VTT+6FwD1t0NZ1JH7VcBhH74HwdHOuepGAsA=; b=1BRtUHn3PTZj0JI6MVoo0eGq2RmboTAcxMlWo09nE+qAZSlXagNa3r7PniMKPOyDos a1cGmi7GDQf0JoTdEJo/esEZ+sLjQjuX2/q+V54u1EOTIxbMVR/+k2tDuZYEKKUvlf// Tvd9/ukKC0LOYfuDx6DppDCHe6DVGJkwVMdnrLo6Whykd8uEq3apoghTgugTNdLfcuCI n383JbEFDWB/wngfy3PDPljeI51Im1LMlY0c2VYLM47+qAQDkhxaRdpJKc5kp8ON6tsM u//VkzocQs7nINCv/xbtd1K1rfCB0JLmc6bkvnbLkXkbsVYksmssEPKZP/HT+Vuk/AHn B4NQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20230601; t=1721919408; x=1722524208; h=content-transfer-encoding:mime-version:references:in-reply-to :message-id:subject:cc:to:from:date:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to; bh=E+efLQ4VTT+6FwD1t0NZ1JH7VcBhH74HwdHOuepGAsA=; b=KWjnfoc8k/3rPpv9RyWFO+gm6TY2LZHv/qlYKdr0w+l4ypLSWToTxnJh02+5RYrlda hzAo+P0PTUNK+tPZ9QYt+Vnt77hnXnJkqnPfQWF0ElvYCcEt74u4Jw1QYl/GyPyAr7g6 j/pEGrc5JXhN3fbeiyPj92R3yoszy7d3b1PRxOc7TTMyEVZEtJnF1zdyTny1s2W1tMit XYuyjN2ItvautvIqa0F42zI1hKF4Fu6HHvSqtJuYv6CRP0stdyNYAeIHbAwEygPc6qT6 cdhlP6aaGFcJoqgnKY/l/mI0JZrMwMhVvPeeWe3l+yUFgkC4/9ew0FJF+OL2eHNQrFci jd6A== X-Forwarded-Encrypted: i=1; AJvYcCWIfXhOFtUY/m0x07BNelPZRXsw6BSnb8GyF8SWDLJ5iYrMjXPYPlYXwAY0lrpfzoiB+lOa25gz46ZX0T4= X-Gm-Message-State: AOJu0Yy+B29O3vCfbeC1HgJquosCn4uiKB6zDa1GZ49IEquCXjHvObk/ vh6nEcofEcKtZy6cUHAS8pGFx3yUgV4tKPv2DdsGWLU0bkCftVA1Qiq6+zicIU8= X-Google-Smtp-Source: AGHT+IGqHx2/BNFSRuKiJF8hYW3Mb/bJNX4qPxe4P7lzHoQrQ4lJ3ySKOSLWd0QgeSoT/8AMEGSmTw== X-Received: by 2002:a17:90b:380f:b0:2c8:e888:26a2 with SMTP id 98e67ed59e1d1-2cf2e9dabedmr2565110a91.13.1721919408573; Thu, 25 Jul 2024 07:56:48 -0700 (PDT) Received: from hermes.local (204-195-96-226.wavecable.com. [204.195.96.226]) by smtp.gmail.com with ESMTPSA id 98e67ed59e1d1-2cdb76013b9sm3634016a91.53.2024.07.25.07.56.47 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Thu, 25 Jul 2024 07:56:48 -0700 (PDT) Date: Thu, 25 Jul 2024 07:56:46 -0700 From: Stephen Hemminger To: Mattias =?UTF-8?B?UsO2bm5ibG9t?= Cc: Shunzhi Wen , Thomas Monjalon , Mattias =?UTF-8?B?UsO2bm5ibG9t?= , Ruifeng Wang , Bruce Richardson , Tyler Retzlaff , Min Zhou , David Christensen , Stanislaw Kardach , Konstantin Ananyev , dev@dpdk.org, nd@arm.com, Wathsala Vithanage , Jack Bond-Preston , Dhruv Tripathi Subject: Re: [PATCH] eal: add support for TRNG with Arm RNG feature Message-ID: <20240725075646.70e16939@hermes.local> In-Reply-To: <44ab5731-6fc6-4283-835a-4f46f9e425a3@lysator.liu.se> References: <20240723212703.721050-1-shunzhi.wen@arm.com> <536d1325-ee15-4630-9ae9-00cef9411d34@lysator.liu.se> <20240724073501.70d86435@hermes.local> <18c67157-8753-4a95-9ab5-f4f1d4a32010@lysator.liu.se> <20240724091620.11ce8c38@hermes.local> <02097e5b-1c04-4e02-a3d7-e8d0df1e3308@lysator.liu.se> <20240724130221.7c0fc39e@hermes.local> <44ab5731-6fc6-4283-835a-4f46f9e425a3@lysator.liu.se> MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable X-BeenThere: dev@dpdk.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: DPDK patches and discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: dev-bounces@dpdk.org On Thu, 25 Jul 2024 06:48:47 +0200 Mattias R=C3=B6nnblom wrote: > >> > >> The above benchmark (rand_perf_autotest with rte_rand() implemented wi= th > >> getentropy()) was run on Linux 5.15 and glibc 2.35, so a regular system > >> call was used. > >> > >> (getentropy() delegates to getrandom(), so the performance is the same= .) =20 > >=20 > > I would trust the upstream kernel support for secure random more than > > anything DPDK could develop. As soon as we get deeper into crypto it > > opens up a whole new security domain and attack surface. > > =20 >=20 > I much agree here. >=20 > What potentially would be useful is an EAL-level OS wrapper. So=20 > getrandom() for UNIX-like OSes, and something else for Windows. In=20 > addition, you could make larger getrandom() calls to shave off some=20 > cycles on the average (at least for the non-vDSO case). >=20 > It seems to me we should defer the introduction of anything like that=20 > until a) it's needed by a DPDK library, or b) someone on the application= =20 > side is asking for it. Agreed. It doesn't make sense for DPDK to become a crypto library. The community doesn't have the expertise and the infrastructure is missing and there are several other projects that handle that OpenSSL etc.