[src] cvs commit: src/etc/rc.d preseedrandom

Brooks Davis brooks at one-eyed-alien.net
Mon Jun 7 20:46:22 GMT 2004 

On Mon, Jun 07, 2004 at 01:22:21PM -0700, David O'Brien wrote:
> On Mon, Jun 07, 2004 at 11:22:16AM -0700, Brooks Davis wrote:
> > On Mon, Jun 07, 2004 at 09:16:30AM +0000, David E. O'Brien wrote:
> > > obrien      2004-06-07 09:16:19 UTC
> > > 
> > >   FreeBSD src repository
> > > 
> > >   Modified files:
> > >     etc/rc.d             preseedrandom 
> > >   Log:
> > >   Don't assume everyone's /etc/[default/]rc.conf 'entropy_file' is "/entropy".
> > 
> > This was deliberate.  The preseedrandom script only exists to get
> > enough entropy into the system to get initdiskless off the ground.
> > Real entropy seeding takes place in initrandom.  You must not assume
> > rc.conf exists when preseedrandom is called!  The only things you get to
> > assume are a / as populated by installworld and an /etc as populated by
> > make distribute.  At that /etc/rc.conf may not exist since it could be
> > created by initdiskless.
> 
> Our diskless setup has become overly convoluted -- I still use the simple
> Sun-style.  That said /etc/defaults/rc.conf is populated by 'make
> installworld'.  We have a published interface (entropy_file="/entropy" #
> Set to NO to disable caching entropy through reboots), and
> 'rc.d/preseedrandom' should be made to properly use it.
> 
> If some diskless environments are too broken to allow the published
> interface, why can't hacks for them be added to 'rc.d/initdiskless'?

The published interface applies to those scripts that can depend
(directly or indirectly) on rcconf.sh.  Before that point rc.conf 
is not sourced in the script's environment so entropy_file is not
defined.  I'm pretty sure this change makes 'feed_dev_random "/entropy"'
into 'feed_dev_random ""'.

-- Brooks

-- 
Any statement of the form "X is the one, true Y" is FALSE.
PGP fingerprint 655D 519C 26A7 82E7 2529  9BF0 5D8E 8BE9 F238 1AD4
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/cvs-src/attachments/20040607/6e736001/attachment.bin

More information about the cvs-src mailing list