Bug#931644: Buster kernel entropy pool too low on VM boot
On Thu, Jul 11, 2019 at 09:42:17AM -0400, Michael J. Redd wrote:
> > The release notes for buster do mention this issue and provide a
> > link to:
> >
> > https://wiki.debian.org/BoottimeEntropyStarvation
> >
> > which has your Haveged solution as one of its suggestions.
> >
>
> D'oh! Serves me right for just skimming the release notes, then. After
> doing some in-depth reading, this is a problem for the Linux community
> at large. Wow. While I'm glad the kernel's getting choosier about where
> and how to harvest entropy and can personally live with the ~30 seconds
> added to VM boot times, it could be painful to, for example, bootstrap
> a Linux guest on AWS for the first time and wait for the initial SSH
> keys to be created.
>
> Will be interesting to see how this evolves over time. In the meantime,
> as this is not actually a kernel defect, I suppose this bug can be
> closed.
I suspect that this bug might end up being mergeable with
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=948519. In that bug,
I am investigating cherry-picking commit 50ee7529ec45 from the linux
mainline branch for buster. At least on the arm64 ec2 instances where
I've tested, this change resolves the issue.
If I provide a package for you, would you be able to test it in your
environment to see if the proposed patch addresses the problem there?
Thanks
noah
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=50ee7529ec45
Reply to: