Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Kern.random.* tunable change

    Scheduled Pinned Locked Moved
    2.4 Development Snapshots
    2
    2
    1.1k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • L
      left4pook
      last edited by

      Hi,

      Just noticed that random (entropy) tunables have changed from FreeBSD 10 -> 11.  In System / Advanced / System Tunables, 2.4.1 and 2.4.2-dev are trying to turn off:

      kern.random.sys.harvest.interrupt
      kern.random.sys.harvest.point_to_point
      kern.random.sys.harvest.ethernet

      These tunables no longer exist, however.  Instead, a mask is used:

      kern.random.harvest.mask: 351

      Which results in the same:

      kern.random.harvest.mask_symbolic: [UMA],[FS_ATIME],SWI,[INTERRUPT],NET_NG,[NET_ETHER],NET_TUN,MOUSE,KEYBOARD,ATTACH,CACHED

      Currently, 2.4.1 and 2.4.2-dev select all entropy sources, which would result in a performance hit.

      1 Reply Last reply Reply Quote 0
      • luckman212L
        luckman212 LAYER 8
        last edited by

        Looks like a fix for that has just been committed  :)
        https://github.com/pfsense/pfsense/commit/c3938c16e3ba66e6911590653a775423371b4a3a

        1 Reply Last reply Reply Quote 0
        • First post
          Last post
        Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.