On Tue, May 3, 2022 at 8:23 AM Wes Malone <w...@mitsi.com> wrote: > > > Isn't this desirable if you don't have an hwrng? > Perhaps what's needed then is a 'hwrng' in MACHINE_FEATURES? > > > Can’t rng-tools figure out the right sources at run time? > rng-tools enables jitter by default if it's built in, even if hwrng is > available. Maybe it's faster to do this on more powerful machines but > it's disruptive to run the cpu at max for so long on my pi's. > > We could also disable it with the /etc/defaults file with `-x jitter`. >
I wonder if rng-tools is still needed after 5.6+ kernel after this commit [1] Arch Linux wiki says no [2]. We added this as a recommendation to openssh by default [3] [4], I wonder if we can turn that off by default and perhaps add havaged as dependency if needed. [5] changed to use /dev/hwrng which seems right change to me. I also wonder if we can tune the resource requirement for rng-tools with limiting cpu threads and buffers allocated for this. [1] https://github.com/torvalds/linux/commit/30c08efec8884fb106b8e57094baa51bb4c44e32 [2] https://wiki.archlinux.org/title/Rng-tools [3] https://git.openembedded.org/openembedded-core/commit/?id=9b01375236e19e3366c58877c4154d7c71632984 [4] https://git.openembedded.org/openembedded-core/commit/?id=fe99349c1bd72b69d22ab0dc52b8825d3157b8e7 [5] https://git.openembedded.org/openembedded-core/commit/?id=f1dc9ac46710814c27cae2d22e79c84a9522993a > > On Mon, May 2, 2022 at 11:47 PM Alexander Kanavin > <alex.kana...@gmail.com> wrote: > > > > Yes, I wonder why this needs to be disabled altogether at build time. Can’t > > rng-tools figure out the right sources at run time? > > > > Alex > > > > On Mon 2. May 2022 at 23.33, William A. Kennington III via > > lists.openembedded.org <wak=google....@lists.openembedded.org> wrote: > >> > >> Isn't this desirable if you don't have an hwrng? We want to generate > >> entropy so we can perform cryptographic operations by default if we > >> bring in rng-tools. > >> > >> On Mon, May 2, 2022 at 2:10 PM Wes Malone <w...@mitsi.com> wrote: > >> > > >> > After boot rngd maxes out the processor initializing JITTER entropy for > >> > some minutes. Here we disable libjitterentropy in favor of only using > >> > the hardware random source via config. > >> > > >> > Signed-off-by: Wes Malone <w...@mitsi.com> > >> > --- > >> > meta/recipes-support/rng-tools/rng-tools_6.15.bb | 1 - > >> > 1 file changed, 1 deletion(-) > >> > > >> > diff --git a/meta/recipes-support/rng-tools/rng-tools_6.15.bb > >> > b/meta/recipes-support/rng-tools/rng-tools_6.15.bb > >> > index 0696351903..4eed060960 100644 > >> > --- a/meta/recipes-support/rng-tools/rng-tools_6.15.bb > >> > +++ b/meta/recipes-support/rng-tools/rng-tools_6.15.bb > >> > @@ -21,7 +21,6 @@ inherit autotools update-rc.d systemd pkgconfig > >> > > >> > EXTRA_OECONF = "--without-rtlsdr" > >> > > >> > -PACKAGECONFIG ??= "libjitterentropy" > >> > PACKAGECONFIG:libc-musl = "libargp libjitterentropy" > >> > > >> > PACKAGECONFIG[libargp] = > >> > "--with-libargp,--without-libargp,argp-standalone," > >> > -- > >> > 2.36.0 > >> > > >> > > >> > > >> > > >> > >> > >> > > >
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#165205): https://lists.openembedded.org/g/openembedded-core/message/165205 Mute This Topic: https://lists.openembedded.org/mt/90845997/21656 Group Owner: openembedded-core+ow...@lists.openembedded.org Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [arch...@mail-archive.com] -=-=-=-=-=-=-=-=-=-=-=-
