Bug#1013192: linux-image-5.10.0-15-amd64: ridiculously small entropy pool

[Bastian Blank <waldi@debian.org>]

Control: severity -1 normal
Control: tags -1 wontfix

On Sat, Jun 18, 2022 at 09:52:41PM +0200, Thorsten Glaser wrote:
> /proc/sys/kernel/random/poolsize is now 256 instead of 4096 bits,
> which was already small before.

The pool size for an RPNG is only the size of the state, nothing else.
It does not in any way describe how much you could get out.

> Why was such a change allowed into stable?

Because upstream considered it important enough for their stable
release, aka it fixes something important.

> This also breaks rngd’s --fill-watermark option when not set to
> percent values. Another reason this should not be changed within
> a stable series.

The kernel does not longer provide a number that could be used here.  It
might not have had any value before anyway.  You just need to reseed on
a regular interval.

Bastian

-- 
Ahead warp factor one, Mr. Sulu.