From ba40cbca9650e1ddaa8357c21b5de31cc376c481 Mon Sep 17 00:00:00 2001
From: Guilhem Moulin <guilhem@fripost.org>
Date: Thu, 23 Jan 2014 02:18:40 +0100
Subject: Ensure urandom entropy is of cryptographic quality.

The non-blocking PRNG /dev/urandom doesn't block if it has been seeded
enough, sadly (e.g., if the entropy pool is empty).  Reading a few bytes
from the *blocking* should ensure that "the kernel RNG has [...] reach
full entropy at least once, which guarantees cryptographic quality of
the rest of the /dev/urandom stream." -- Tor bug #10676

    https://trac.torproject.org/projects/tor/ticket/10676

See also urandom(4).
---
 src/fripost-partman-udeb/debian/templates | 8 ++++++++
 1 file changed, 8 insertions(+)

(limited to 'src/fripost-partman-udeb/debian/templates')

diff --git a/src/fripost-partman-udeb/debian/templates b/src/fripost-partman-udeb/debian/templates
index 2088e19..4f4d177 100644
--- a/src/fripost-partman-udeb/debian/templates
+++ b/src/fripost-partman-udeb/debian/templates
@@ -1,3 +1,11 @@
+Template: fripost/seed_urandom_progress_title
+Type: text
+Description: Seeding /dev/urandom with ${BYTES} bytes from /dev/random
+
+Template: fripost/seed_urandom_progress_info
+Type: text
+Description: This may take a while
+
 Template: debian-installer/fripost-partman/title
 Type: text
 Description: Partition disks using a shell script
-- 
cgit v1.2.3