From owner-freebsd-arch@FreeBSD.ORG Thu Aug 8 21:22:46 2013 Return-Path: Delivered-To: freebsd-arch@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTP id 7E76C628; Thu, 8 Aug 2013 21:22:46 +0000 (UTC) (envelope-from mark@grondar.org) Received: from gromit.grondar.org (grandfather.grondar.org [IPv6:2a01:348:0:15:5d59:5c20:0:2]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id 3FE9B242D; Thu, 8 Aug 2013 21:22:46 +0000 (UTC) Received: from graveyard.grondar.org ([88.96.155.33] helo=gronkulator.grondar.org) by gromit.grondar.org with esmtpsa (TLSv1:AES128-SHA:128) (Exim 4.80.1 (FreeBSD)) (envelope-from ) id 1V7XfP-000PFH-FU; Thu, 08 Aug 2013 22:22:44 +0100 Subject: Re: random(4) plugin infrastructure for mulitple RNG in a modular fashion Mime-Version: 1.0 (Mac OS X Mail 6.5 \(1508\)) Content-Type: multipart/signed; boundary="Apple-Mail=_F2A70419-AB93-4FE9-A977-8C37366DA750"; protocol="application/pgp-signature"; micalg=pgp-sha512 From: Mark R V Murray In-Reply-To: <20130808205514.GA95000@dragon.NUXI.org> Date: Thu, 8 Aug 2013 22:22:42 +0100 Message-Id: <1F5C260F-DA73-4D71-BB4B-E749BA9DEB57@grondar.org> References: <20130807183516.GC79319@dragon.NUXI.org> <1EDB5C8E-5755-4A8A-89F1-A64412080744@yahoo.com> <20130808205514.GA95000@dragon.NUXI.org> To: obrien@freebsd.org X-Mailer: Apple Mail (2.1508) X-SA-Score: -2.2 Cc: Arthur Mesh , Scott Long , secteam@freebsd.org, freebsd-arch@freebsd.org X-BeenThere: freebsd-arch@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list List-Id: Discussion related to FreeBSD architecture List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 08 Aug 2013 21:22:46 -0000 --Apple-Mail=_F2A70419-AB93-4FE9-A977-8C37366DA750 Content-Transfer-Encoding: quoted-printable Content-Type: text/plain; charset=us-ascii On 8 Aug 2013, at 21:55, David O'Brien wrote: > On Wed, Aug 07, 2013 at 05:07:15PM -0700, Scott Long wrote: >> We only compile and deploy a whitelist subset of modules, so the PRNG >> modules were not compiled into the kernel nor present in /boot. When = the >> machine came up, it paused waiting for keyboard input. In one = iteration, it >> released the hold after about 100 characters of quick typing. >=20 > Do you have any random(4) related local changes? I ask because the > FreeBSD kernel does not block due to either a missing a /dev/random > device, nor yarrow being not seeded. >=20 > I'd like to understand how you experienced what seems to be blocking > due to being not-seeded in a FreeBSD 10 (or -STABLE) kernel. Mechanism exists, but its disabled. I'd like to re-enable it. Look for "seeded =3D 1" in randomdev_soft.c, and see what that "seeded" variable does. M --=20 Mark R V Murray --Apple-Mail=_F2A70419-AB93-4FE9-A977-8C37366DA750 Content-Transfer-Encoding: 7bit Content-Disposition: attachment; filename=signature.asc Content-Type: application/pgp-signature; name=signature.asc Content-Description: Message signed with OpenPGP using GPGMail -----BEGIN PGP SIGNATURE----- Version: GnuPG/MacGPG2 v2.0.20 (Darwin) Comment: GPGTools - http://gpgtools.org iQCVAwUBUgQMIt58vKOKE6LNAQrNjgP/TFlESFA6djUsb3sY16vsiaP0Kh4XzREc kRn+kZZoQcVwKQwW0cRytu5jgabTYAXzRs10h6fQpni+/PhrwC5zNbXiGtWn0X53 m/9zOieIlZ960P0kJtZ6ep2tbzGrkDE9UNVbcvc/qjEKP0ptOASTkLI/cN9028BC Ml8IA8i2oww= =aw16 -----END PGP SIGNATURE----- --Apple-Mail=_F2A70419-AB93-4FE9-A977-8C37366DA750--