From nobody Sat Dec 03 07:38:53 2022 X-Original-To: current@mlmmj.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mlmmj.nyi.freebsd.org (Postfix) with ESMTP id 4NPMBb52CYz4jsWY for ; Sat, 3 Dec 2022 07:39:03 +0000 (UTC) (envelope-from max@baroi.com) Received: from mailin02.mxof.com (mailin02.mxof.com [72.20.134.35]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client CN "*.mxof.com", Issuer "GeoTrust TLS DV RSA Mixed SHA256 2020 CA-1" (not verified)) by mx1.freebsd.org (Postfix) with ESMTPS id 4NPMBZ6MjJz43gm for ; Sat, 3 Dec 2022 07:39:02 +0000 (UTC) (envelope-from max@baroi.com) Authentication-Results: mx1.freebsd.org; dkim=none; spf=pass (mx1.freebsd.org: domain of max@baroi.com designates 72.20.134.35 as permitted sender) smtp.mailfrom=max@baroi.com; dmarc=none Received: from mta01.mxof.net (mta01.mxof.net [10.1.0.31]) by mailin02.mxof.com (8.15.2/8.15.2/Debian-8) with ESMTPS id 2B37crnK016818 (version=TLSv1.2 cipher=ECDHE-RSA-AES256-GCM-SHA384 bits=256 verify=NOT) for ; Sat, 3 Dec 2022 07:38:54 GMT Received: from mta01.mxof.net (localhost [127.0.0.1]) by mta01.mxof.net (Postfix) with ESMTPS id 67E63260C4E for ; Fri, 2 Dec 2022 23:38:53 -0800 (PST) Received: from localhost (localhost [127.0.0.1]) by mta01.mxof.net (Postfix) with ESMTP id 5392A260C7D for ; Fri, 2 Dec 2022 23:38:53 -0800 (PST) Received: from mta01.mxof.net ([127.0.0.1]) by localhost (mta01.mxof.net [127.0.0.1]) (amavisd-new, port 10026) with ESMTP id mymIj9yoh2kx for ; Fri, 2 Dec 2022 23:38:53 -0800 (PST) Received: from dummy.faircode.eu (cpe-172-116-59-145.socal.res.rr.com [172.116.59.145]) (Authenticated sender: max@baroi.com) by mta01.mxof.net (Postfix) with ESMTPSA id 1C63D260C4E for ; Fri, 2 Dec 2022 23:38:53 -0800 (PST) Date: Fri, 2 Dec 2022 23:38:53 -0800 (PST) From: Max Baroi To: current@freebsd.org Message-ID: Subject: Consequences of disabling vtrnd List-Id: Discussions about the use of FreeBSD-current List-Archive: https://lists.freebsd.org/archives/freebsd-current List-Help: List-Post: List-Subscribe: List-Unsubscribe: Sender: owner-freebsd-current@freebsd.org MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_Part_11_262336782.1670053133569" X-Correlation-ID: X-Bayes-Prob: 0.0001 (Score 0, tokens from: outgoing:default, base:default, @@RPTN) X-Spam-Score: -0.01 () [Hold at 7.10] HTML_MESSAGE:0.001,URIBL_AMI_WHITE:-0.01 X-CanIt-Geo: No geolocation information available for 10.1.0.31 X-CanItPRO-Stream: outgoing:default (inherits from base:default) X-Canit-Stats-ID: 028PHCRV4 - bfa58425d3fa - 20221203 X-Antispam-Training-Forget: https://spamblock.prxy.com/b.php?c=f&i=028PHCRV4&m=bfa58425d3fa&rlm=outgoing&t=20221203 X-Antispam-Training-Nonspam: https://spamblock.prxy.com/b.php?c=n&i=028PHCRV4&m=bfa58425d3fa&rlm=outgoing&t=20221203 X-Antispam-Training-Phish: https://spamblock.prxy.com/b.php?c=p&i=028PHCRV4&m=bfa58425d3fa&rlm=outgoing&t=20221203 X-Antispam-Training-Spam: https://spamblock.prxy.com/b.php?c=s&i=028PHCRV4&m=bfa58425d3fa&rlm=outgoing&t=20221203 X-Scanned-By: CanIt (www . roaringpenguin . com) on 10.1.0.12 X-Spamd-Result: default: False [-3.26 / 15.00]; NEURAL_HAM_LONG(-1.00)[-1.000]; NEURAL_HAM_MEDIUM(-1.00)[-1.000]; NEURAL_HAM_SHORT(-0.96)[-0.963]; R_SPF_ALLOW(-0.20)[+ip4:72.20.134.32/28]; MIME_GOOD(-0.10)[multipart/alternative,text/plain]; DMARC_NA(0.00)[baroi.com]; MLMMJ_DEST(0.00)[current@freebsd.org]; R_DKIM_NA(0.00)[]; FROM_EQ_ENVFROM(0.00)[]; ASN(0.00)[asn:394437, ipnet:72.20.134.0/24, country:US]; MIME_TRACE(0.00)[0:+,1:+,2:~]; RCVD_VIA_SMTP_AUTH(0.00)[]; RCPT_COUNT_ONE(0.00)[1]; TO_DN_NONE(0.00)[]; RCVD_COUNT_FIVE(0.00)[6]; ARC_NA(0.00)[]; RCVD_TLS_LAST(0.00)[]; FREEFALL_USER(0.00)[max]; TO_MATCH_ENVRCPT_ALL(0.00)[]; FROM_HAS_DN(0.00)[]; PREVIOUSLY_DELIVERED(0.00)[current@freebsd.org]; MID_RHS_MATCH_FROM(0.00)[] X-Rspamd-Queue-Id: 4NPMBZ6MjJz43gm X-Spamd-Bar: --- X-ThisMailContainsUnwantedMimeParts: N ------=_Part_11_262336782.1670053133569 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit If this is not the appropriate place, I apologize. Installing on an instance on vultr.com from booting from the standard image hangs. This is pretty well documented, and the equally well documented workaround is disabling vtrnd. But are there lingering consequences from setting hint.vtrnd.disabled in the boot menu? The man page says virtio_random supplies the guest with high-quality random bits from the host. With this disabled, is the guest's entropy pool populated from a different high quality source or does the workaround leave the guest with only low entropy sources? Thanks for any reply, Max Baroi ------=_Part_11_262336782.1670053133569 Content-Type: text/html; charset=UTF-8 Content-Transfer-Encoding: 7bit If this is not the appropriate place, I apologize.

Installing on an instance on vultr.com from booting from the standard image hangs. This is pretty well documented, and the equally well documented workaround is disabling vtrnd.

But are there lingering consequences from setting hint.vtrnd.disabled in the boot menu? The man page says virtio_random supplies the guest with high-quality random bits from the host. With this disabled, is the guest's entropy pool populated from a different high quality source or does the workaround leave the guest with only low entropy sources?

Thanks for any reply,
Max Baroi
------=_Part_11_262336782.1670053133569--