, which in turn calls the PKCS #11 function
C_GenerateRandom.
Björn Persson
pgpOK5m0QGWIe.pgp
Description: OpenPGP digital signatur
s job requires a daemon. OpenSSL is a library. Or do you mean its
command-line tool? So how would I tell that to fetch random data
through PKCS #11?
GnuPG at least has a daemon called scdaemon. Is that what you mean? So
how would I tell that to fetch random data through PKCS #11 and write
to /d
r not rely solely on events controlled by other computers.
It also helps to mix entropy from multiple sources, in case one of them
has a design flaw or a backdoor, or breaks down, or loses its driver
like in Debian bug 1041007.
Björn Persson
pgpEuWy2nx_ME.pgp
Description: OpenPGP digital signatur
s.html can also obtain
random data from a "smartcard"-compatible device, but I don't find that
in Debian either.
Does anyone know of another way to obtain random data from devices of
this kind?
Björn Persson
pgp1OCs1ezY_B.pgp
Description: OpenPGP digital signatur
davidson wrote:
> Debian Bug #1041007
> https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1041007#10
Yes, that seems to be exactly my problem. So it's not intentionally
disabled. Then I can hope that it may be fixed some day. Thanks for
your help.
Björn Persson
pgpRmFKPdRagm.pgp
David Wright wrote:
> On Mon 14 Aug 2023 at 11:26:13 (+0200), Björn Persson wrote:
> > Other functions in the same source file create /dev/tpm0, and it looks
> > like the random number generator should get registered together with
> > the TPM. It's conditional on CONFIG_
Anders Andersson wrote:
> On Sun, Aug 13, 2023 at 11:09 PM Björn Persson wrote:
> > Jeffrey Walton wrote:
> > > Maybe related to
> > > https://www.phoronix.com/news/Linux-Disables-RNG-AMD-fTPMs
> >
> > Not likely. That article is about a firmw
fb1e9176028d02ef86f3cf76aa2476#n517
Other functions in the same source file create /dev/tpm0, and it looks
like the random number generator should get registered together with
the TPM. It's conditional on CONFIG_HW_RANDOM_TPM. Where can I check
the value of that option?
Björn Persson
pgperdoICnD28.pgp
Description: OpenPGP digital signatur
, and my TPM is a discrete
chip from Infineon. The change in question is supposed to disable the
random number generator only if the TPM lists AMD as its manufacturer.
Björn Persson
pgpeOz3MAeGrY.pgp
Description: OpenPGP digital signatur
ome difference between the two kernels, but so far I haven't found
anything obvious in the Linux source code.
Is there anything that can be done, or is support for this random number
generator just gone from Linux 6.1?
Björn Persson
pgpgOVEgYOwhW.pgp
Description: OpenPGP digital signatur
e of the BIOS) without which the
> board doesn't even know how to read from the SATA disk.
I see. Being able to replace the memory that holds the bootloader makes
perfect sense. That's even a feature I would pay extra for.
Björn Persson
pgpeO2iKh3u5U.pgp
Description: OpenPGP digital signatur
Jonas Smedegaard wrote:
> Quoting Björn Persson (2019-05-02 15:07:00)
> > Jonas Smedegaard wrote:
> > > Most but not all areas that Geode CPUs previously covered, nowadays
> > > is covered by ARM SoCs. You may find this useful:
> > > https://wi
ce in the box, and the bios and Grub read it just fine, but
maybe Linux somehow can't.
Björn Persson
pgpOyVFWO87QZ.pgp
Description: OpenPGP digital signatur
d in the initrd environment.
Booting from USB has been suggested several times. I'll do that if
someone can tell me the magic incantation that makes Combios boot a USB
device. I doubt it's possible. PXE booting is supposed to work. Maybe
some day in a few weeks or months I'll fin
ments are partially different from mine. For
example a microSD slot isn't a hard requirement for me.
Björn Persson
pgpic3Us88oXE.pgp
Description: OpenPGP digital signatur
way to
combine repositories to get only the kernel from Antix.
Björn Persson
pgpnaW3EVBrbX.pgp
Description: OpenPGP digital signatur
bw wrote:
> Before you dump it, I'd sure confirm the situation, document the flags and
> file a bug against the release notes, so maybe that can get fixed in
> buster release notes?
I filed this bug report:
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=928340
tarted on replacing the hardware, rather than putting a lot
of work into temporary solutions. It's sad to have to throw away
working hardware, but that's the way it is in the whole industry.
Debian is at least better than many others in that regard.
Björn Persson
pgpDNTiNNbv6z.pgp
Description: OpenPGP digital signatur
Björn Persson wrote:
> Brian wrote:
> > brian@futro:~$ uname -a
> > Linux futro 4.9.0-7-686 #1 SMP Debian 4.9.110-3+deb9u1 (2018-08-03) i586
> > GNU/Linux
>
> That's an older Linux than I got. Perhaps I could try that package, if
> I can get hold of it.
I&#
deloptes wrote:
> I have latest kernel custom build
Built by you? Or does somebody publish custom kernels for Debian on
Geode?
> and I am on the geode mailing list.
What mailing list?
Björn Persson
pgpeRWBfUGQIO.pgp
Description: OpenPGP digital signatur
bw wrote:
> You tested a live 686 image, or the installer?
I followed these instructions:
https://www.debian.org/releases/stretch/i386/release-notes/ch-upgrading.html
Björn Persson
pgpUGMBHO1h__.pgp
Description: OpenPGP digital signatur
. I guess different versions of Linux
might explain some differences.
So far I've seen two replies saying it should work and two saying it
should not, so I'm rather confused at the moment.
> brian@futro:~$ uname -a
> Linux futro 4.9.0-7-686 #1 SMP Debian 4.9.110-3+deb9u1 (2018-
a bug that should be fixed?
Björn Persson
pgp7xK4ilcgS_.pgp
Description: OpenPGP digital signatur
23 matches
Mail list logo
