/qubes-issues

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

use ExecStartPost rather than ExecStart for qubes-random-seed.sh #2179

Closed
adrelanos opened this Issue Jul 17, 2016 · 2 comments

Comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
2 participants
@adrelanos @marmarek
@adrelanos
Member

adrelanos commented Jul 17, 2016
edited
Edited 1 time
  • @adrelanos adrelanos edited Jul 17, 2016 (most recent)

Context:

Edit suggested for file:

@marmarek

Do I understand correctly that you want to replace ExecStart in systemd-random-seed?

No. (Although that may not be that bad.)

What about rather than using ExecStart...

ExecStart=/usr/lib/qubes/init/qubes-random-seed.sh

Using ExecStartPost...?

ExecStartPost=/usr/lib/qubes/init/qubes-random-seed.sh

Then we would not circumvent the default Debian / systemd behavior. Under the assumption "whatever you add to entropy pool it can only improve entropy but never worsen entropy", it should not hurt.

Related:
persist random seed files [entropy] in TemplateBasedVMs (#1752)

//cc @v6ak @cfcs @ag4ve

This was referenced Jul 17, 2016

Closed
Closed
@marmarek

This comment has been minimized.

Show comment
Hide comment
@marmarek

marmarek Jul 17, 2016

Member

Placing additional ExecStart do not replace existing one, so both are executed.

[user@testvm ~]$ systemctl status systemd-random-seed
● systemd-random-seed.service - Load/Save Random Seed
   Loaded: loaded (/usr/lib/systemd/system/systemd-random-seed.service; static; vendor preset: disabled)
  Drop-In: /usr/lib/systemd/system/systemd-random-seed.service.d
           └─30_qubes.conf
   Active: active (exited) since Sun 2016-07-17 16:46:28 CEST; 3h 2min ago
     Docs: man:systemd-random-seed.service(8)
           man:random(4)
  Process: 369 ExecStart=/usr/lib/qubes/init/qubes-random-seed.sh (code=exited, status=0/SUCCESS)
  Process: 362 ExecStart=/usr/lib/systemd/systemd-random-seed load (code=exited, status=0/SUCCESS)
 Main PID: 369 (code=exited, status=0/SUCCESS)
   CGroup: /system.slice/systemd-random-seed.service

So, it doesn't matter, closing.
Member

marmarek commented Jul 17, 2016

Placing additional ExecStart do not replace existing one, so both are executed.

[user@testvm ~]$ systemctl status systemd-random-seed
● systemd-random-seed.service - Load/Save Random Seed
   Loaded: loaded (/usr/lib/systemd/system/systemd-random-seed.service; static; vendor preset: disabled)
  Drop-In: /usr/lib/systemd/system/systemd-random-seed.service.d
           └─30_qubes.conf
   Active: active (exited) since Sun 2016-07-17 16:46:28 CEST; 3h 2min ago
     Docs: man:systemd-random-seed.service(8)
           man:random(4)
  Process: 369 ExecStart=/usr/lib/qubes/init/qubes-random-seed.sh (code=exited, status=0/SUCCESS)
  Process: 362 ExecStart=/usr/lib/systemd/systemd-random-seed load (code=exited, status=0/SUCCESS)
 Main PID: 369 (code=exited, status=0/SUCCESS)
   CGroup: /system.slice/systemd-random-seed.service

So, it doesn't matter, closing.

@marmarek marmarek closed this Jul 17, 2016

@adrelanos

This comment has been minimized.

Show comment
Hide comment
@adrelanos

adrelanos Jul 17, 2016

Member

Indeed. Forgot about that... To disable the original one we would have to use ExecStart= before.
Member

adrelanos commented Jul 17, 2016

Indeed. Forgot about that... To disable the original one we would have to use ExecStart= before.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment