From: premdas.prajosh@gmail.com (Prajosh Premdas)
To: kernelnewbies@lists.kernelnewbies.org
Subject: inittab is not executing after my Linux box boots up
Date: Tue, 21 Jun 2011 14:20:21 +0530 [thread overview]
Message-ID: <BANLkTi=YPuNwn+ERTRuk9XU7x3yzmLFHng@mail.gmail.com> (raw)
In-Reply-To: <BANLkTi=wQ3BHUtVKXu5_UH_x7oXFKvZdJw@mail.gmail.com>
Hi
I have copied the generated rsa key and placed it in my nfs root filesystem.
I find the problem still persists
Please see the last leg of the logs below
*eth0: link up (100/Full)*
*VFS: Mounted root (nfs filesystem) on device 0:12.*
*Freeing init memory: 128K*
*Starting network...*
*ip: RTNETLINK answers: File exists*
*Starting dropbear sshd: OK*
*
*
I feel the already generated key has been detected. And still the
initab doesn't execute. Please advice
On Tue, Jun 21, 2011 at 11:15 AM, Vladimir Murzin <murzin.v@gmail.com>wrote:
> On Mon, Jun 20, 2011 at 10:24 AM, Prajosh Premdas
> <premdas.prajosh@gmail.com> wrote:
> > Hi Dave and Mulyadi
> > Can you tell me where to place the previously generated RSA key. I even
> > suspected this but this line
> > Starting dropbear sshd: generating rsa key... generating dsa key... OK
> >
> > and the OK pulled me off the track. One more thing can you tell me what
> > does the OK mean there...
> > My mask is mask=255.0.0.0 so it is able to get the NFS server location
> > I typed a wrong command after changing the commands i find no difference
> > On Sun, Jun 19, 2011 at 11:22 PM, Dave Hylands <dhylands@gmail.com>
> wrote:
> >>
> >> Hi Projish,
> >>
> >> On Sun, Jun 19, 2011 at 8:24 AM, Prajosh Premdas
> >> <premdas.prajosh@gmail.com> wrote:
> >> > Hi
> >> > Please find the entire boot sequence here
> >> > RomBOOT
> >> ...snip...
> >> > TCP cubic registered
> >> > NET: Registered protocol family 17
> >> > rtc-at91sam9 at91_rtt.0: hctosys: unable to read the hardware clock
> >> > IP-Config: Guessing netmask 255.0.0.0
> >> > IP-Config: Complete:
> >> > device=eth0, addr=10.220.4.200, mask=255.0.0.0, gw=10.220.4.35,
> >> > host=10.220.4.200, domain=, nis-domain=(none),
> >> > bootserver=255.255.255.255, rootserver=10.0.0.1, rootpath=
> >> > eth0: link up (100/Full)
> >> > VFS: Mounted root (nfs filesystem) on device 0:12.
> >>
> >> So it looks like your root file system was mounted successfully.
> >>
> >> > Freeing init memory: 128K
> >>
> >> All message from this point onwards come from init.
> >>
> >> > Starting network...
> >> > ip: RTNETLINK answers: File exists
> >> > Starting dropbear sshd: generating rsa key... generating dsa key... OK
> >>
> >> And since sshd is starting, it's actually processing stuff from your
> >> root file system.
> >>
> >> You may want to try disabling ssh. Generating the rsa key can take
> >> several minutes, depending on how fast your target is. So it may look
> >> like the system is hung, but it will actually continue to boot.
> >>
> >> You may want save away the generated RSA key and include it in your
> >> generated image so that this step is faster. For a given filesystem,
> >> it only happens the first time, and once the generated key is stored,
> >> ssh will just use the previously generated key. But if you're
> >> constantly rebuilding your filesystem without any generated keys then
> >> the first time you boot the new filesystem you'lll gget a long delay.
> >>
> >> --
> >> Dave Hylands
> >> Shuswap, BC, Canada
> >> http://www.davehylands.com
> >
> >
> >
> > --
> > Regards,
> >
> > Prajosh Premdas
> >
> > _______________________________________________
> > Kernelnewbies mailing list
> > Kernelnewbies at kernelnewbies.org
> > http://lists.kernelnewbies.org/mailman/listinfo/kernelnewbies
> >
> >
>
> Hi Prajosh,
>
> I believe, that generating keys by sshd involve blocked operation on
> /dev/random.
> It's strict requirement to use /dev/random instead of /dev/urandom in such
> case.
>
> Actually, it's well-known problem in embedded world to fill up entropy
> pool, because of
> lack random events into some solutions.
>
> I've heard it's possible to save and restore entropy pool, but it's
> not safe, I think.
> In my opinion, Dave's suggestion about saving keys into image is quite
> suitable, as
> soon as you aren't intend to distribute you solution on the market.
>
> P.S. Sorry for my English.
>
--
Regards,
Prajosh Premdas
--
Regards,
Prajosh Premdas
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.kernelnewbies.org/pipermail/kernelnewbies/attachments/20110621/6fcfa7f3/attachment.html
next prev parent reply other threads:[~2011-06-21 8:50 UTC|newest]
Thread overview: 11+ messages / expand[flat|nested] mbox.gz Atom feed top
2011-06-14 17:07 inittab is not executing after my Linux box boots up Prajosh Premdas
2011-06-14 17:19 ` Dave Hylands
2011-06-14 17:22 ` Prajosh Premdas
2011-06-15 6:40 ` Raseel Bhagat
2011-06-19 15:24 ` Prajosh Premdas
2011-06-19 15:53 ` Mulyadi Santosa
2011-06-19 17:52 ` Dave Hylands
2011-06-20 6:24 ` Prajosh Premdas
[not found] ` <BANLkTikR191M+gLTYVstGiNbR3-DNa58Dw@mail.gmail.com>
[not found] ` <BANLkTi=wQ3BHUtVKXu5_UH_x7oXFKvZdJw@mail.gmail.com>
2011-06-21 8:50 ` Prajosh Premdas [this message]
2011-06-21 9:31 ` Bernd Petrovitsch
2011-06-21 17:32 ` dinesh bhaskar
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to='BANLkTi=YPuNwn+ERTRuk9XU7x3yzmLFHng@mail.gmail.com' \
--to=premdas.prajosh@gmail.com \
--cc=kernelnewbies@lists.kernelnewbies.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).