From owner-freebsd-arch@FreeBSD.ORG Thu Aug 8 00:07:23 2013 Return-Path: Delivered-To: freebsd-arch@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTP id 7215E290 for ; Thu, 8 Aug 2013 00:07:23 +0000 (UTC) (envelope-from scott4long@yahoo.com) Received: from nm22-vm2.bullet.mail.ne1.yahoo.com (nm22-vm2.bullet.mail.ne1.yahoo.com [98.138.91.210]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id 35B6924D3 for ; Thu, 8 Aug 2013 00:07:23 +0000 (UTC) Received: from [98.138.101.131] by nm22.bullet.mail.ne1.yahoo.com with NNFMP; 08 Aug 2013 00:07:16 -0000 Received: from [98.138.226.31] by tm19.bullet.mail.ne1.yahoo.com with NNFMP; 08 Aug 2013 00:07:16 -0000 Received: from [127.0.0.1] by smtp202.mail.ne1.yahoo.com with NNFMP; 08 Aug 2013 00:07:16 -0000 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=yahoo.com; s=s1024; t=1375920436; bh=Lp4/svUQV+gvX4nSwPs9erg8jeampy7iK4DOj3uMTFE=; h=X-Yahoo-Newman-Id:X-Yahoo-Newman-Property:X-YMail-OSG:X-Yahoo-SMTP:X-Rocket-Received:Content-Type:Mime-Version:Subject:From:In-Reply-To:Date:Cc:Content-Transfer-Encoding:Message-Id:References:To:X-Mailer; b=V1U6j+u8rhzFUuJotVX6PKKi2DQvQm8QfmPXtffOi++zfMj6vKafNaFqVhwZOy/S1HbNXyZCMMpc6Tvfxjtz1FvsgYNQ2MAJvNkW3FOK5PB7XAxTpa2hk5aYFcRpXx431Z1UJ/k8j1DzimEg/U/eYs+59zKEHrooRiDZfzgJwss= X-Yahoo-Newman-Id: 170666.87593.bm@smtp202.mail.ne1.yahoo.com X-Yahoo-Newman-Property: ymail-3 X-YMail-OSG: zI9jHzEVM1ll2OHyLVh.pkJgY3ahKjHMbt440ApbrOnoum_ QRtWAFuCdSkwkzWc8FJyQMGQ_mgGpcSIdGVrvI_gKX2ACKIoI6zWwoAl0XKW dxms2UgTIge3CxKnSBND6YNvhlmsQLmb40Gt4lNa.lMdTUVmTNAPA8lUjEiO RgGKJB3vc5uMGMgQ9x4fWYOLh6eP9yn5V41pCzz.78CdRjObXgZ0v_SCTFY2 PxlqN.0lzJSe6269SeaB.dds59xcNGmX7VHbcvzv7TngN3z.VWaoVb4Jyjxs SfSlLhXM3mhP2muUEld059Egx4O6XKzW.5.vVZrj1Ld13Jw_1Z0jeKjGBPYr IhZYl5eYU7nKxJ7cZ3iT6gGrdPxTYTUGdL4piS.vNXONLYjmzDyv0JpWZklP RMv5mxaltJ68rMISECFSbe.X4.CKq9tvL48X6JsS8v1p8tEDz7_oIvbweTUk UdfmAM3XXI.4e5rL0RFpobWdcljFrr3SSSgdFp5A7BtFQWcz83PR2pPur_Da ZxzPwgDio0KpoZ78Cc7BMblyJfHe.NrVNNp7nb2QK2YR1SU.lYZncV5gpLyT j.w-- X-Yahoo-SMTP: clhABp.swBB7fs.LwIJpv3jkWgo2NU8- X-Rocket-Received: from phobos.corp.netflix.com (scott4long@69.53.237.66 with ) by smtp202.mail.ne1.yahoo.com with SMTP; 07 Aug 2013 17:07:16 -0700 PDT Content-Type: text/plain; charset=us-ascii Mime-Version: 1.0 (Mac OS X Mail 6.5 \(1508\)) Subject: Re: random(4) plugin infrastructure for mulitple RNG in a modular fashion From: Scott Long In-Reply-To: <20130807183516.GC79319@dragon.NUXI.org> Date: Wed, 7 Aug 2013 17:07:15 -0700 Content-Transfer-Encoding: quoted-printable Message-Id: <1EDB5C8E-5755-4A8A-89F1-A64412080744@yahoo.com> References: <20130807183516.GC79319@dragon.NUXI.org> To: obrien@freebsd.org X-Mailer: Apple Mail (2.1508) Cc: Arthur Mesh , secteam@freebsd.org, freebsd-arch@freebsd.org X-BeenThere: freebsd-arch@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: Discussion related to FreeBSD architecture List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 08 Aug 2013 00:07:23 -0000 On Aug 7, 2013, at 11:35 AM, David O'Brien wrote: > Replying to an earlier comments made: >=20 > On Mon, Aug 05, 2013 at 09:42:51PM -0600, Scott Long wrote: >>> OK - so we are agreed that obrien@'s commit didn't break anything? >>=20 >> It absolutely broke something. It rendered my remote test machines = useless >> after what should have been a routine source upgrade. Even figuring >> out what happened and mashing on the remote keyboard only succeeded = in >> making the machines limp forward with no /dev/random device. >=20 > Hi Scott, > Please give more detail about the issue if you can. I would really = like > to understand how the changeset negatively impacted you in order to = fix > the issue. >=20 We only compile and deploy a whitelist subset of modules, so the PRNG modules were not compiled into the kernel nor present in /boot. When = the machine came up, it paused waiting for keyboard input. In one = iteration, it released the hold after about 100 characters of quick typing. In = another iteration, it waited as I slowly typed only a few characters a minute, = until I gave up. In a third iteration, it waited indefinitely as I typed = nothing, and I gave up after 5-10 minutes. In the first iteration, even after the system continued, various things = complained and/or failed with a complaint of there being no /dev/random. named was = one thing, but I know there were others. We've since moved on and picked up the post-revert sources. Scott