diff options
| author | Lennart Poettering <lennart@poettering.net> | 2019-07-22 18:13:26 +0200 |
|---|---|---|
| committer | Lennart Poettering <lennart@poettering.net> | 2019-07-25 18:31:20 +0200 |
| commit | 93f5910078f9f6d34183ea4df8a842ad7b8a83e6 (patch) | |
| tree | 5da8c46b871e25149eb1e7c6f545eb6d9a26c2f7 /man | |
| parent | 7fb0c615807cdcc2d509e4d719763f2b196c6e72 (diff) | |
| download | systemd-93f5910078f9f6d34183ea4df8a842ad7b8a83e6.tar.gz systemd-93f5910078f9f6d34183ea4df8a842ad7b8a83e6.tar.bz2 systemd-93f5910078f9f6d34183ea4df8a842ad7b8a83e6.zip | |
docs: add longer document about systemd and random number seeds
Diffstat (limited to 'man')
| -rw-r--r-- | man/bootctl.xml | 5 | ||||
| -rw-r--r-- | man/loader.conf.xml | 5 | ||||
| -rw-r--r-- | man/systemd-boot.xml | 5 | ||||
| -rw-r--r-- | man/systemd-random-seed.service.xml | 3 |
4 files changed, 15 insertions, 3 deletions
diff --git a/man/bootctl.xml b/man/bootctl.xml index 070a31d09c..822d07a606 100644 --- a/man/bootctl.xml +++ b/man/bootctl.xml @@ -143,7 +143,10 @@ OS and a new seed to store in the ESP from the combination of both. The random seed passed to the OS is credited to the kernel's entropy pool by the system manager during early boot, and permits userspace to boot up with an entropy pool fully initialized very early on. Also see - <citerefentry><refentrytitle>systemd-boot-system-token.service</refentrytitle><manvolnum>8</manvolnum></citerefentry>.</para></listitem> + <citerefentry><refentrytitle>systemd-boot-system-token.service</refentrytitle><manvolnum>8</manvolnum></citerefentry>.</para> + + <para>See <ulink url="https://systemd.io/RANDOM_SEEDS">Random Seeds</ulink> for further + information.</para></listitem> </varlistentry> <varlistentry> diff --git a/man/loader.conf.xml b/man/loader.conf.xml index cef20b59d8..14f84c13ee 100644 --- a/man/loader.conf.xml +++ b/man/loader.conf.xml @@ -167,7 +167,10 @@ not set. This mode is useful in environments where protection against OS image reuse is not a concern, and the random seed shall be used even with no further setup in place. User <command>bootctl random-seed</command> to initialize both the random seed file in the ESP and the system token EFI - variable.</para></listitem> + variable.</para> + + <para>See <ulink url="https://systemd.io/RANDOM_SEEDS">Random Seeds</ulink> for further + information.</para></listitem> </varlistentry> </variablelist> </refsect1> diff --git a/man/systemd-boot.xml b/man/systemd-boot.xml index 3142b56d66..da8ddb5f84 100644 --- a/man/systemd-boot.xml +++ b/man/systemd-boot.xml @@ -401,7 +401,10 @@ "golden" OS image — i.e. containing the same random seed file in the ESP — will still pass a different random seed to the OS. It is made sure the random seed stored in the ESP is fully overwritten before the OS is booted, to ensure different random seed data is used between subsequent - boots.</para></listitem> + boots.</para> + + <para>See <ulink url="https://systemd.io/RANDOM_SEEDS">Random Seeds</ulink> for + further information.</para></listitem> </varlistentry> <varlistentry> diff --git a/man/systemd-random-seed.service.xml b/man/systemd-random-seed.service.xml index 8714c4280d..28783a15e9 100644 --- a/man/systemd-random-seed.service.xml +++ b/man/systemd-random-seed.service.xml @@ -58,6 +58,9 @@ safety precaution crediting entropy is thus disabled by default. It is recommended to remove the random seed from OS images intended for replication on multiple systems, in which case it is safe to enable entropy crediting, see below.</para> + + <para>See <ulink url="https://systemd.io/RANDOM_SEEDS">Random Seeds</ulink> for further + information.</para> </refsect1> <refsect1> |