rngd copies data from the hardware random number source to /dev/random (the kernel random number source). Without it /dev/random gets populated by key-press intervals, network interrupt times, and other events which may not be sufficiently random or common.
Right. That's what bothers me.
It seems that rngd expects /dev/hwrandom while udev with the FC3T1 kernel creates /dev/hw_random. I haven't checked the latest kernel to see whether this has changed.
So which one is considered wrong?
I believe that hotplug is spawned by kernel threads and can start before init. The policy is loaded and SE Linux init is complete before init starts running with full functionality (IE before rc.sysinit is run).
Is that guaranteed or just happens to work out that way?
Aug 21 09:00:16 buildhost kernel: Adding 2096440k swap on /dev/sda5. Priority:-1 extents:1 Aug 21 09:00:16 buildhost kernel: audit(1093093168.059:0): avc: denied { mounton } for pid=1117 exe=/bin/mount path=/proc/sys/fs/binfmt_misc dev=proc ino=-268435430 scontext=user_u:system_r:unconfined_t tcontext=system_u:object_r:sysctl_t tclass=dir Aug 21 09:00:16 buildhost kernel: audit(1093093168.059:0): avc: denied { mounton } for pid=1117 exe=/bin/mount path=/proc/sys/fs/binfmt_misc dev=proc ino=-268435430 scontext=user_u:system_r:unconfined_t tcontext=system_u:object_r:sysctl_t tclass=dir
What script is calling this mount? It's a bug in policy but I'd like to get more info before making changes.
I am using the targeted policy 1.15.16-2 and initscripts 7.62. This was right after the add swap file in /etc/rc.sysinit:
# Start up swapping. update_boot_stage RCswap action $"Enabling swap space: " swapon -a -e
# Set up binfmt_misc /bin/mount -t binfmt_misc none /proc/sys/fs/binfmt_misc > /dev/null 2>&1
-Steve Grubb
_______________________________ Do you Yahoo!? Win 1 of 4,000 free domain names from Yahoo! Enter now. http://promotions.yahoo.com/goldrush