Bug#961729: education-networked-common: Please remove Recommends: haveged
* Wolfgang Schweer [200528 18:56]: > On Thu, May 28, 2020 at 01:25:25PM +, Holger Levsen wrote: > > On Thu, May 28, 2020 at 03:24:22PM +0200, Chris Hofstaedtler wrote: > > > The topic came up on IRC, and for me it is about removing bloat from > > > ("default") installs. > > d-i still uses haveged-udeb, see: > https://lists.debian.org/debian-boot/2020/03/msg00207.html > for the latest mail on this issue. > > Please correct me if I'm wrong. In my tests, in a KVM VM with cpu=core2duo (no RDRAND), with Linux 5.6.0-2-amd64, the "crng init done" message appears ~7sec after boot, at the same time as systemd tries to mount the so-called "Root and Kernel File Systems", so before haveged would start. Notably, there is no boot hang/delay caused by this. Sure, if the VM has a HWRNG attached, the "crng init done" message appears a lot earlier, but as long as nothing blocks, then there's no point of having haveged. Chris
Bug#961729: education-networked-common: Please remove Recommends: haveged
On Thu, May 28, 2020 at 10:17:37PM +0200, Petter Reinholdtsen wrote: > I tried searching the web for information about the added entropy > sources in the kernel, but came up short Maybe this one:: https://github.com/torvalds/linux/blob/master/crypto/jitterentropy.c Wolfgang signature.asc Description: PGP signature
Bug#961729: education-networked-common: Please remove Recommends: haveged
[Chris Hofstaedtler] > your package currently Recommends: haveged. On modern kernels, so > whatever will ship in bulleye, the kernel will provide enough entropy, > so there should be no need for haveged, except in exceptional > situations. This sound very good indeed. Where can I read more about the entropy sources enabled in the Linux kernel by default for the bullseye kernel? Earlier we ran into problems with low entropy on LTSP machine (aka machines with no disk), where there is no disk IO and very few interrupts. Very glad to hear that these kind of machines will no longer run short on entropy. :) I tried searching the web for information about the added entropy sources in the kernel, but came up short, unless the idea is that the kernel will use hardware entropy sources like the TPU. I hope these drivers also work on older hardware. -- Happy hacking Petter Reinholdtsen
Bug#961729: education-networked-common: Please remove Recommends: haveged
On Thu, May 28, 2020 at 01:25:25PM +, Holger Levsen wrote: > On Thu, May 28, 2020 at 03:24:22PM +0200, Chris Hofstaedtler wrote: > > The topic came up on IRC, and for me it is about removing bloat from > > ("default") installs. d-i still uses haveged-udeb, see: https://lists.debian.org/debian-boot/2020/03/msg00207.html for the latest mail on this issue. Please correct me if I'm wrong. Wolfgang signature.asc Description: PGP signature
Processed: Bug#961729 marked as pending in debian-edu
Processing control commands: > tag -1 pending Bug #961729 [education-networked-common] education-networked-common: Please remove Recommends: haveged Added tag(s) pending. -- 961729: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=961729 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems
Bug#961729: education-networked-common: Please remove Recommends: haveged
On Thu, May 28, 2020 at 03:24:22PM +0200, Chris Hofstaedtler wrote: > The topic came up on IRC, and for me it is about removing bloat from > ("default") installs. cool, thanks. > I have also heard about concerns of the quality of haveged > randomness, but personally did not investigate. ack. and fixed in git, will be uploaded shortly. -- cheers, Holger --- holger@(debian|reproducible-builds|layer-acht).org PGP fingerprint: B8BF 5413 7B09 D35C F026 FE9D 091A B856 069A AA1C signature.asc Description: PGP signature
Bug#961729: education-networked-common: Please remove Recommends: haveged
* Holger Levsen [200528 15:15]: > Hi, > > On Thu, May 28, 2020 at 01:06:49PM +, Chris Hofstaedtler wrote: > > your package currently Recommends: haveged. On modern kernels, so > > whatever will ship in bulleye, the kernel will provide enough entropy, > > so there should be no need for haveged, except in exceptional > > situations. > > > > Please remove the Recommends: haveged. > > out of curiosity: why do you care? Just trying to get rid of some 'bloat' > everywhere or? (that would be a fine reason alone. i'm just a bit surprised :) The topic came up on IRC, and for me it is about removing bloat from ("default") installs. I have also heard about concerns of the quality of haveged randomness, but personally did not investigate. Chris
Bug#961729: education-networked-common: Please remove Recommends: haveged
Hi, On Thu, May 28, 2020 at 01:06:49PM +, Chris Hofstaedtler wrote: > your package currently Recommends: haveged. On modern kernels, so > whatever will ship in bulleye, the kernel will provide enough entropy, > so there should be no need for haveged, except in exceptional > situations. > > Please remove the Recommends: haveged. out of curiosity: why do you care? Just trying to get rid of some 'bloat' everywhere or? (that would be a fine reason alone. i'm just a bit surprised :) -- cheers, Holger --- holger@(debian|reproducible-builds|layer-acht).org PGP fingerprint: B8BF 5413 7B09 D35C F026 FE9D 091A B856 069A AA1C signature.asc Description: PGP signature
Bug#961729: education-networked-common: Please remove Recommends: haveged
Package: education-networked-common Version: 2.11.18 Severity: wishlist Dear Maintainer, your package currently Recommends: haveged. On modern kernels, so whatever will ship in bulleye, the kernel will provide enough entropy, so there should be no need for haveged, except in exceptional situations. Please remove the Recommends: haveged. Thanks, Chris