[Bug 1472691] [NEW] Requires high quality entropy on first run

Robie Basak 1472691 at bugs.launchpad.net
Wed Jul 8 16:21:06 UTC 2015 

Public bug reported:

On first run, I see:

+ gpg --homedir=/home/ubuntu/.cache/autopkgtest --batch --no-random-seed-file --gen-key key-gen-params
gpg: keyring `/home/ubuntu/.cache/autopkgtest/secring.gpg' created
gpg: keyring `/home/ubuntu/.cache/autopkgtest/pubring.gpg' created
+++++.+++++++++++++++.++++++++++.+++++++++++++++++++++++++.+++++++++++++++.+++++..+++++++++++++++++++++++++++++++++++++++++++++++++++++++>+++++.+++++......>.+++++..........+++++

Not enough random bytes available.  Please do some other work to give
the OS a chance to collect more entropy! (Need 222 more bytes)

I often end up running adt-run on a freshly deployed development
machine, and this blocks me every time, even on bare metal. Workaround:
Ctrl-C, rm -rf ~/.cache/autopkgtest, replace /dev/random with a symlink
to /dev/urandom and rerun.

There is no reason for adt-run to need this level of cryptographically
secure entropy. gpg key generation is expected to be run very rarely,
rather than in routine development. Please could we remove this
requirement? Is there a way to use [trusted=yes] in sources.list so no
internal signing is required, for example, or at least to generate a key
less pedantically if it must be create? I'm not sure what options exist
to cause gpg to be less pedantic though.

ProblemType: Bug
DistroRelease: Ubuntu 15.04
Package: autopkgtest 3.13
ProcVersionSignature: User Name 3.19.0-22.22-generic 3.19.8-ckt1
Uname: Linux 3.19.0-22-generic x86_64
ApportVersion: 2.17.2-0ubuntu1.1
Architecture: amd64
Date: Wed Jul  8 16:16:55 2015
PackageArchitecture: all
SourcePackage: autopkgtest
UpgradeStatus: No upgrade log present (probably fresh install)

** Affects: autopkgtest (Ubuntu)
     Importance: Low
         Status: New


** Tags: amd64 apport-bug uec-images vivid

** Description changed:

  On first run, I see:
  
  + gpg --homedir=/home/ubuntu/.cache/autopkgtest --batch --no-random-seed-file --gen-key key-gen-params
  gpg: keyring `/home/ubuntu/.cache/autopkgtest/secring.gpg' created
  gpg: keyring `/home/ubuntu/.cache/autopkgtest/pubring.gpg' created
  +++++.+++++++++++++++.++++++++++.+++++++++++++++++++++++++.+++++++++++++++.+++++..+++++++++++++++++++++++++++++++++++++++++++++++++++++++>+++++.+++++......>.+++++..........+++++
  
  Not enough random bytes available.  Please do some other work to give
  the OS a chance to collect more entropy! (Need 222 more bytes)
  
  I often end up running adt-run on a freshly deployed development
  machine, and this blocks me every time, even on bare metal. Workaround:
- replace /dev/random with a symlink to /dev/urandom.
+ Ctrl-C, rm -rf ~/.cache/autopkgtest, replace /dev/random with a symlink
+ to /dev/urandom and rerun.
  
  There is no reason for adt-run to need this level of cryptographically
  secure entropy. gpg key generation is expected to be run very rarely,
  rather than in routine development. Please could we remove this
  requirement? Is there a way to use [trusted=yes] in sources.list so no
  internal signing is required, for example, or at least to generate a key
  less pedantically if it must be create? I'm not sure what options exist
  to cause gpg to be less pedantic though.
  
  ProblemType: Bug
  DistroRelease: Ubuntu 15.04
  Package: autopkgtest 3.13
  ProcVersionSignature: User Name 3.19.0-22.22-generic 3.19.8-ckt1
  Uname: Linux 3.19.0-22-generic x86_64
  ApportVersion: 2.17.2-0ubuntu1.1
  Architecture: amd64
  Date: Wed Jul  8 16:16:55 2015
  PackageArchitecture: all
  SourcePackage: autopkgtest
  UpgradeStatus: No upgrade log present (probably fresh install)

-- 
You received this bug notification because you are a member of Ubuntu
Foundations Bugs, which is subscribed to autopkgtest in Ubuntu.
https://bugs.launchpad.net/bugs/1472691

Title:
  Requires high quality entropy on first run

Status in autopkgtest package in Ubuntu:
  New

Bug description:
  On first run, I see:

  + gpg --homedir=/home/ubuntu/.cache/autopkgtest --batch --no-random-seed-file --gen-key key-gen-params
  gpg: keyring `/home/ubuntu/.cache/autopkgtest/secring.gpg' created
  gpg: keyring `/home/ubuntu/.cache/autopkgtest/pubring.gpg' created
  +++++.+++++++++++++++.++++++++++.+++++++++++++++++++++++++.+++++++++++++++.+++++..+++++++++++++++++++++++++++++++++++++++++++++++++++++++>+++++.+++++......>.+++++..........+++++

  Not enough random bytes available.  Please do some other work to give
  the OS a chance to collect more entropy! (Need 222 more bytes)

  I often end up running adt-run on a freshly deployed development
  machine, and this blocks me every time, even on bare metal.
  Workaround: Ctrl-C, rm -rf ~/.cache/autopkgtest, replace /dev/random
  with a symlink to /dev/urandom and rerun.

  There is no reason for adt-run to need this level of cryptographically
  secure entropy. gpg key generation is expected to be run very rarely,
  rather than in routine development. Please could we remove this
  requirement? Is there a way to use [trusted=yes] in sources.list so no
  internal signing is required, for example, or at least to generate a
  key less pedantically if it must be create? I'm not sure what options
  exist to cause gpg to be less pedantic though.

  ProblemType: Bug
  DistroRelease: Ubuntu 15.04
  Package: autopkgtest 3.13
  ProcVersionSignature: User Name 3.19.0-22.22-generic 3.19.8-ckt1
  Uname: Linux 3.19.0-22-generic x86_64
  ApportVersion: 2.17.2-0ubuntu1.1
  Architecture: amd64
  Date: Wed Jul  8 16:16:55 2015
  PackageArchitecture: all
  SourcePackage: autopkgtest
  UpgradeStatus: No upgrade log present (probably fresh install)

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/autopkgtest/+bug/1472691/+subscriptions

More information about the foundations-bugs mailing list