DO Ideas 2

Support the rngd virtio driver

When hosting a secure website that gets lots of traffic, requests can be stalled due to insufficient entropy to feed the cryptographic process. On bare-metal hardware, the rngd daemon can feed the kernel's entropy provider, but there's no available driver that can currently be used by rngd in Digital Ocean containers (droplets).

The KVM hypervisor used by Digital Ocean does, in fact, provide an rngd "virtio" driver, but Digital Ocean is not providing it yet along with their other virtio drivers.

  • Michael Fischer
  • Sep 11 2018
  • Attach files
  • Anonymous commented
    September 11, 2018 18:07

    +1

    This sounds like a quick win.

  • fufu commented
    September 11, 2018 18:07

    +1

    Was facing right now howto fix a low entropy on my droplet, and did find this.