Re: port-xen/40739: no entropy device sourcese on 5.0_RC2 XEN3PAE_DOMU

To: port-xen-maintainer%netbsd.org@localhost,gnats-admin%netbsd.org@localhost,netbsd-bugs%netbsd.org@localhost,gendalia%iastate.edu@localhost
Subject: Re: port-xen/40739: no entropy device sourcese on 5.0_RC2 XEN3PAE_DOMU
From: Christoph Badura <bad%bsd.de@localhost>
Date: Thu, 26 Feb 2009 12:15:04 +0000 (UTC)

The following reply was made to PR port-xen/40739; it has been noted by GNATS.

From: Christoph Badura <bad%bsd.de@localhost>
To: Manuel Bouyer <bouyer%antioche.eu.org@localhost>
Cc: gnats-bugs%netbsd.org@localhost
Subject: Re: port-xen/40739: no entropy device sourcese on 5.0_RC2 XEN3PAE_DOMU
Date: Thu, 26 Feb 2009 12:45:23 +0100

 On Tue, Feb 24, 2009 at 07:56:41PM +0100, Manuel Bouyer wrote:
 > the problem in the case of a Xen domU is that there's no good source
 > of entropy. On native systems we use the hard disk as a source
 > of entropoy; but on a domU it's disabled because others domU could interfere
 > with it.

 Entropy collection from xbd isn't disabled in Xen2 domUs.  I'm not sure I
 buy the assertion that other domUs could interfere with the entropy collection.
 And if they did, wouldn't that then be true for xennet, too?

 What is the actual way to interfere with entropy collection, BTW?

 > rndctl should show xennets as a possible source of entropy, but it has
 > to be enabled manually.

 I guess we should enable that by default then.  Proably not only for domU
 as diskless machines need an entropy source, too.

 --chris

Prev by Date: PR/40569 CVS commit: [netbsd-4] src/sys/dev/raidframe
Next by Date: Re: kern/37826 (Kernel sees only one SATA channel (out of four) on Abit AN52 motherboard (nvidia nf520__single chip))
Previous by Thread: Re: port-xen/40739: no entropy device sourcese on 5.0_RC2 XEN3PAE_DOMU
Next by Thread: Re: port-xen/40739: no entropy device sourcese on 5.0_RC2 XEN3PAE_DOMU
Indexes:

Home | Main Index | Thread Index | Old Index