FreeBSD Mail Archives

Date:      Wed, 8 May 2019 18:21:14 +0200
From:      Michael Tuexen <tuexen@fh-muenster.de>
To:        "Andrey V. Elsukov" <bu7cher@yandex.ru>
Cc:        freebsd-current <freebsd-current@FreeBSD.org>
Subject:   Re: random_sources_feed: rs_read for hardware device 'Intel Secure Key RNG' returned no entropy.
Message-ID:  <DC29F07C-AF92-4E03-9C64-5C3FB69A5360@fh-muenster.de>
In-Reply-To: <2c1eceb4-08a5-b633-2ce2-c711610db1cb@yandex.ru>
References:  <2c1eceb4-08a5-b633-2ce2-c711610db1cb@yandex.ru>


[-- Attachment #1 --]
> On 8. May 2019, at 18:13, Andrey V. Elsukov <bu7cher@yandex.ru> wrote:
> 
> Hi,
> 
> today I updated one of my test machines and discovered that message from
> the subject periodically printed in the console.
Fixed in  https://svnweb.freebsd.org/changeset/base/347329

Best regards
Michael
> 
> FreeBSD 13.0-CURRENT r347327=4f47587(svn_head) GENERIC-NODEBUG amd64
> FreeBSD clang version 8.0.0 (tags/RELEASE_800/final 356365) (based on
> LLVM 8.0.0)
> VT(vga): resolution 640x480
> CPU: Intel(R) Xeon(R) CPU E5-2660 v4@ 2.00GHz (2000.04-MHz K8-class CPU)
> ...
> real memory  = 68719476736 (65536 MB)
> avail memory = 66722340864 (63631 MB)
> Event timer "LAPIC" quality 600
> ACPI APIC Table: <SUPERM SMCI--MB>
> FreeBSD/SMP: Multiprocessor System Detected: 28 CPUs
> FreeBSD/SMP: 2 package(s) x 14 core(s)
> ...
> 
> % grep -c random /var/run/dmesg.boot
> 606
> 
> % grep random /var/run/dmesg.boot | head -10
> __stack_chk_init: WARNING: Initializing stack protection with non-random
> cookies!
> random: entropy device external interface
> random: registering fast source Intel Secure Key RNG
> random: fast provider: "Intel Secure Key RNG"
> arc4random: WARNING: initial seeding bypassed the cryptographic random
> device because it was not yet seeded and the knob
> 'bypass_before_seeding' was enabled.
> random_sources_feed: rs_read for hardware device 'Intel Secure Key RNG'
> returned no entropy.
> random_sources_feed: rs_read for hardware device 'Intel Secure Key RNG'
> returned no entropy.
> random_sources_feed: rs_read for hardware device 'Intel Secure Key RNG'
> returned no entropy.
> random_sources_feed: rs_read for hardware device 'Intel Secure Key RNG'
> returned no entropy.
> random_sources_feed: rs_read for hardware device 'Intel Secure Key RNG'
> returned no entropy.
> 
> % sysctl -a | grep -v random_sources_feed | grep rand
> kern.fallback_elf_brand: -1
> device	random
> device	rdrand_rng
> kern.randompid: 0
> kern.elf32.fallback_brand: -1
> kern.elf64.fallback_brand: -1
> kern.random.fortuna.minpoolsize: 64
> kern.random.harvest.mask_symbolic:
> PURE_RDRAND,[UMA],[FS_ATIME],SWI,INTERRUPT,NET_NG,[NET_ETHER],NET_TUN,MOUSE,KEYBOARD,ATTACH,CACHED
> kern.random.harvest.mask_bin: 000000010000000111011111
> kern.random.harvest.mask: 66015
> kern.random.use_chacha20_cipher: 0
> kern.random.block_seeded_status: 0
> kern.random.random_sources: 'Intel Secure Key RNG'
> kern.random.initial_seeding.disable_bypass_warnings: 0
> kern.random.initial_seeding.arc4random_bypassed_before_seeding: 1
> kern.random.initial_seeding.read_random_bypassed_before_seeding: 0
> kern.random.initial_seeding.bypass_before_seeding: 1
> net.inet.ip.portrange.randomtime: 45
> net.inet.ip.portrange.randomcps: 10
> net.inet.ip.portrange.randomized: 1
> net.inet.ip.random_id_total: 0
> net.inet.ip.random_id_collisions: 0
> net.inet.ip.random_id_period: 0
> net.inet.ip.random_id: 0
> net.key.int_random: 60
> debug.fail_point.status_fill_kinfo_vnode__random_path: off
> debug.fail_point.fill_kinfo_vnode__random_path: off
> debug.fail_point.status_random_fortuna_pre_read: off
> debug.fail_point.random_fortuna_pre_read: off
> security.stack_protect.permit_nonrandom_cookies: 1
> 
> -- 
> WBR, Andrey V. Elsukov
> 


[-- Attachment #2 --]
0�	*�H��
��0�10
	`�He0�	*�H��
���0��0���PN��=�d0
	*�H��
0q10	UDE10U
Deutsche Telekom AG10UT-TeleSec Trust Center1#0!UDeutsche Telekom Root CA 20
140722120826Z
190709235900Z0Z10	UDE10U

DFN-Verein10UDFN-PKI1$0"UDFN-Verein PCA Global - G010�"0
	*�H��
�0�
���g��
���TÖP5=b�nL��[�"t� �4����1����R�(#��t�^[��x�x��(59{-�E���z|�JÆ�\+1{�$C�8�jh���Ox����v���&���t�	��kν��0O����b��'0
e`M��	#*�5X'�v�q�����5�}o3������]Ak���L��Q�ٽ���VVC���=�'0�IT��4�qu�l���!�'�>�99Hj��ə������0��0U�0UI����=�D{)��
p>�d0U#0�1�y��S���z-l
�+�30U�0�0bU [0Y0+��!�,0+��!�,0+��!�,0
+��!�,0
+��!�,0>U70503�1�/�-http://pki0336.telesec.de/rl/DT_ROOT_CA_2.crl0x+l0j0,+0� http://ocsp0336.telesec.de/ocspr0:+0�.http://pki0336.telesec.de/crt/DT_ROOT_CA_2.cer0
	*�H��
�c (��!�r�9FY92%���
��}A��m
n,�Yu�3�a'�ò�5���*I�f�f/��]n?n�Z[�Cc\���1��_M�e�N2��|zK�M\t�!�u�R>��jӐ#nIg5�MV���/Ϸ���r>ɼ@�Z�=ּ�÷�2��,�jm�5��9DXc�$���N�n/8��WI?�nPo,���F�e�Ϯ���ٟS�>�/���Ƅ���}�{��$�$c4�Z� *y�:%B��e;|��#)�,��9[T0��0����$�	H30
	*�H��
0Z10	UDE10U

DFN-Verein10UDFN-PKI1$0"UDFN-Verein PCA Global - G010
140527145409Z
190709235900Z0��10	UDE10UNordrhein-Westfalen10UMuenster1 0U
Fachhochschule Muenster1#0!UDatenverarbeitungszentrale10UFH Muenster CA - G011 0	*�H��
	ca@fh-muenster.de0�"0
	*�H��
�0�
��yl��l�"�"����AOD�SW��{�gp�5��ȕ�[�۵K��{{��� N�'%M��|(���4�5
�~���.�;��.�����e.xH�&=��k|	��f�W���v29��3qP�_�v���d�:��;Iy��C�l|�쒷4�/�sC�Yձ�P�G�_�E�c��jˠX���h
�WZ
�xy_��ST�bZO���ἥ�^_Ml3d����s���tЎ�EP�Kp�7���aa%w��	مg�o���0��0U�0�0U�0U 
00U 0U
�[��1��5B�����7����0U#0�I����=�D{)��
p>�d0U0�ca@fh-muenster.de0��U��0~0=�;�9�7http://cdp1.pca.dfn.de/global-root-ca/pub/crl/cacrl.crl0=�;�9�7http://cdp2.pca.dfn.de/global-root-ca/pub/crl/cacrl.crl0��+��0��03+0�'http://ocsp.pca.dfn.de/OCSP-Server/OCSP0G+0�;http://cdp1.pca.dfn.de/global-root-ca/pub/cacert/cacert.crt0G+0�;http://cdp2.pca.dfn.de/global-root-ca/pub/cacert/cacert.crt0
	*�H��
��G5�Jo��5�-�k��m���˅��q��t�M�h��(g��s�Qb@�2�^C�l�}h^�t�B�� f�!*�$(�Y�1K���dlh��`V���_+
�t�p�z-�ӎ���~���0�kY��!@Fw��7+�`v���ez�Z�%H����&@���E
���Ɏ,��lfQ�@�k}��u#�>w�ڹf���΃�5Zl�$�K@�eu�����k�Yq��F�I;6]7.���܋@�Zy��aƄ}�~�~0�
0�����t7��0
	*�H��
0��10	UDE10UNordrhein-Westfalen10UMuenster1 0U
Fachhochschule Muenster1#0!UDatenverarbeitungszentrale10UFH Muenster CA - G011 0	*�H��
	ca@fh-muenster.de0
160704070613Z
190704070613Z0|10	UDE1 0U
Fachhochschule Muenster1200U)Fachbereich Elektrotechnik und Informatik10UMichael Tuexen0�"0
	*�H��
�0�
�̚Pmٛn��6
�lW�<ƣ �~��Ky��w'�L7�9�7����V����8�y��WY�3�H?.M��:u.ۈd�U=w�>���@����.vW�b��_�uK?XX�x���S6.N��
�SY|n1�k�X�_�+\���2��L��-��=�p
�,��&���������e;:ה�⒬b
G-��_WԵD�g�	�bS��"�	���w�`��C�D���k [}��m��\!����G0�C0@U 9070+��!�,0+��!�,0
+��!�,0	U00U��0U%0++0U��j��f���fE��u0U#0�
�[��1��5B�����7����0 U0�tuexen@fh-muenster.de0��U��0~0=�;�9�7http://cdp1.pca.dfn.de/fh-muenster-ca/pub/crl/cacrl.crl0=�;�9�7http://cdp2.pca.dfn.de/fh-muenster-ca/pub/crl/cacrl.crl0��+��0��03+0�'http://ocsp.pca.dfn.de/OCSP-Server/OCSP0G+0�;http://cdp1.pca.dfn.de/fh-muenster-ca/pub/cacert/cacert.crt0G+0�;http://cdp2.pca.dfn.de/fh-muenster-ca/pub/cacert/cacert.crt0
	*�H��
�H���x�:T��i�����ʆ,�$c`�)�nqF?Ŗ�N�q�e�u����7B>��������-,!ŃRK~��SyF�r�I��ʲ}iI81|�W�'��·~'�m�����	��>�b�Z5��h�e ��߲����Q�����N�*΋׊����t4vK���s��n��s�QqϨ���I��G���^V��T��U/��<��[��U9�J��.B1��i6��7���(��ɐ�vH�
�)1�90�50��0��10	UDE10UNordrhein-Westfalen10UMuenster1 0U
Fachhochschule Muenster1#0!UDatenverarbeitungszentrale10UFH Muenster CA - G011 0	*�H��
	ca@fh-muenster.de��t7��0
	`�He��70	*�H��
	1	*�H��
0	*�H��
	1
190508162115Z0/	*�H��
	1" ӳ!�eM��P9�G�[��k��`��ک6J0��	+�71��0��0��10	UDE10UNordrhein-Westfalen10UMuenster1 0U
Fachhochschule Muenster1#0!UDatenverarbeitungszentrale10UFH Muenster CA - G011 0	*�H��
	ca@fh-muenster.de��t7��0��*�H��
	1�ՠ��0��10	UDE10UNordrhein-Westfalen10UMuenster1 0U
Fachhochschule Muenster1#0!UDatenverarbeitungszentrale10UFH Muenster CA - G011 0	*�H��
	ca@fh-muenster.de��t7��0
	*�H��
�����R��$������VUO���K	�"��/�._����lX
�����k!\��b�~��}���L!�1���y�%��\�/���h���
�X����7�B�xA!xrddm�<Ao�_�،8�/�ҚL̀뛤
�О Ӎ(�N?N?ؼ$vu��&+�e�
���|-�|�u��_k�>��D��̤��K'	V�^�;�u]���W_��FiqI)��ȕ�I�܆>���,'i��a(vR�\��ay�{

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?DC29F07C-AF92-4E03-9C64-5C3FB69A5360>

Header And Logo

Peripheral Links

Site Navigation

Header And Logo

Peripheral Links

Search

Site Navigation