Bug#912087: [Pkg-openssl-devel] Bug#912087: Bug#912087: openssh-server: Slow startup after the upgrade to 7.9p1
On Mon, Oct 29, 2018 at 09:58:20PM +0100, Sebastian Andrzej Siewior wrote: > On 2018-10-29 18:22:08 [+0100], Kurt Roeckx wrote: > > So I believe this is not an openssl issue, but something in the > > order that the kernel's RNG is initialized and openssh is started. > > Potentionally the RNG isn't initialized at all and you actually > > have to wait for the kernel to get it's random data from the slow > > way. > > > > So I'm reassigning this to systemd and openssh-server, I have no > > idea where the problem really is. > > I see it, too. So during boot someone invokes "sshd -t" which invokes That's: ExecStartPre=/usr/sbin/sshd -t > getrandom(, 32, 0) > and this blocks. And did systemd-random-seed.service get run before that? Kurt
Bug#912087: [Pkg-openssl-devel] Bug#912087: Bug#912087: openssh-server: Slow startup after the upgrade to 7.9p1
On 2018-10-29 18:22:08 [+0100], Kurt Roeckx wrote: > So I believe this is not an openssl issue, but something in the > order that the kernel's RNG is initialized and openssh is started. > Potentionally the RNG isn't initialized at all and you actually > have to wait for the kernel to get it's random data from the slow > way. > > So I'm reassigning this to systemd and openssh-server, I have no > idea where the problem really is. I see it, too. So during boot someone invokes "sshd -t" which invokes getrandom(, 32, 0) and this blocks. I get a login prompt and everything but sshd is started "late" due to this. > Kurt Sebastian
