svn commit: r273872 - in head: etc/defaults etc/rc.d libexec/save-entropy share/examples/kld/random_adaptor sys/conf sys/dev/glxsb sys/dev/random sys/kern sys/modules sys/modules/padlock_rng sys/mo...

[Dag-Erling Smørgrav]

Ian Lepore <ian at FreeBSD.org> writes:
> Yeah.  I vaguely remember discussion about this something like 12-18
> months ago.  As I remember it, there was a desire to avoid using the
> same startup saved entropy on a rapid series of reboots and the thinking
> was to combat that by generating some fresh saved entropy on each boot.

Sure, but this can be done from cron instead of an rc script (see
below).

> It seems like that should work if the old saved entropy were stirred
> in with the modicum of boot-time entropy before generating a new save
> file.

That's what happens in random_start().

> I was thinking maybe postrandom should only try to save a new file if
> there are some existing files to avoid the possibility of hanging.  But
> when I look at postrandom more closely, it seems to be generating a save
> file, then deleting it along with all the other save files.

Umm, yes, I hadn't noticed that (I only reviewed the kernel code).  I
think we should just remove the fastsaveseed line.  Instead, make a
@reboot entry for save-entropy in /etc/crontab.

DES
-- 
Dag-Erling Smørgrav - des at des.no