From owner-freebsd-stable@freebsd.org Tue Jan 5 19:11:22 2016 Return-Path: Delivered-To: freebsd-stable@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 76CB7A62B6F for ; Tue, 5 Jan 2016 19:11:22 +0000 (UTC) (envelope-from nonesuch@longcount.org) Received: from mail-yk0-x22c.google.com (mail-yk0-x22c.google.com [IPv6:2607:f8b0:4002:c07::22c]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 3717B1221 for ; Tue, 5 Jan 2016 19:11:22 +0000 (UTC) (envelope-from nonesuch@longcount.org) Received: by mail-yk0-x22c.google.com with SMTP id x67so291730906ykd.2 for ; Tue, 05 Jan 2016 11:11:22 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=longcount-org.20150623.gappssmtp.com; s=20150623; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=a49gtc58D5Y/PyC2pqKhGGHKAycxUr6xWS/irDJ7s4M=; b=bY7sUC1Uw6qpu+SIXkdigAKli8TA+7IrCz6g13R3tjZ3TLf6FmMYmK5+jJQsJOzpxO 7tPoNjUCe/rDvgOfDaYzfFthKNQ3QYI5i1enLrABGBGiT22nhEz2x50+rqzsSFwcY9Ry m0+eTNUrQ42ySKt2kF2Quhqvm3KgfWp6+UWa4QSoRDk4c3F17snzF6eKjOU0aQP7P4Cj 5qVLNFK5ze5b++eCsiJkUeMGVjmuLR0SpMjTZg3I/o9PB733Y4HrraTFIoiTDxEIQINj iOFnallqyF2OnSXhEFUM93Jo+z2AqMR2CJV36ptPQHPVbJ/JEp8LCfJ2st/A1hpgReuj 2E5Q== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type; bh=a49gtc58D5Y/PyC2pqKhGGHKAycxUr6xWS/irDJ7s4M=; b=VKYS/ESzNit40QW6mtsBdDC4vGkV7jxyItII8GOURZJjbItoS/bxtINg7fRijufyeD XRjGFp7oJFsbvjeNctShASo1sHOhh8+CEgtBIJMzgg1WVdp9BA2czCuMsPau9Bgzpayc A+AkxGzw4Hj1DHwri5bRfn4WSuNQjUUi9MHSQHwWFYB2+wulUVSVgORb3qs3hM21U4rI t+4yf4VvDXCSJd/bsz+VRcvsAb7djPJh+gbvHSf4kkc/rVPM4/7NqrOiqlnaBBL9CNQg rJV3IBxbg5toaCXLTxEdHpEkmRsAOX0bgwLuxdFk4Ryv9/yztiWooAGLCvkLs6T89NOQ nm+A== X-Gm-Message-State: ALoCoQmFBojC4YitEKNULVYZK7m+dh7H3T8iOa7badHkRQwUWy0UIDnh70CvjSJMpN9ajC9c0Mtb4RZKXNxj3Sxr9gO5SsmVrQ== MIME-Version: 1.0 X-Received: by 10.129.148.133 with SMTP id l127mr16117052ywg.272.1452021081347; Tue, 05 Jan 2016 11:11:21 -0800 (PST) Received: by 10.13.240.134 with HTTP; Tue, 5 Jan 2016 11:11:21 -0800 (PST) X-Originating-IP: [38.104.68.66] In-Reply-To: <20160105190023.GF81231@server.rulingia.com> References: <20160105190023.GF81231@server.rulingia.com> Date: Tue, 5 Jan 2016 14:11:21 -0500 Message-ID: Subject: Re: dev/random warning on 10-STABLE after r292122 up till r292855 From: Mark Saad To: Peter Jeremy Cc: FreeBSD-Stable ML Content-Type: text/plain; charset=UTF-8 X-Content-Filtered-By: Mailman/MimeDel 2.1.20 X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 05 Jan 2016 19:11:22 -0000 On Tue, Jan 5, 2016 at 2:00 PM, Peter Jeremy wrote: > On 2016-Jan-04 16:44:49 -0500, Mark Saad wrote: > >On boot dmesg logs the following warning not seen on 10.2-RELEASE amd64. > > > >random device not loaded; using insecure entropy > > When I first noticed this, I investigated and worked out that it's > related to how the random device initialises itself and its data and > entropy sources. In particular, it reflects the state of the random > device at that point in time, not at any later point when random data > is actually requested. > > I agree that the wording of this message could unnecessarily alarm a > sysadmin and think it could be done better. IMHO, this sort of > alamist message should only be output if there is no decent entropy > source available when the random device is unblocked. > > -- > Peter Jeremy > Peter I agree it looks like its not really a big deal; what I cant find is what changed to make this even print out. The commits for this warning are from a long time ago. Off hand they are from 2014 or 2012. There were no changes to sys/dev/random in as much time; so I cant figure out what changed to make this even print out. -- mark saad | nonesuch@longcount.org