From 302f2971e658c50fdae4f28307bf935801cabf35 Mon Sep 17 00:00:00 2001
From: Willy Tarreau <w@1wt.eu>
Date: Sun, 5 May 2024 17:15:45 +0200
Subject: preinit: feed the RNG at boot

sshd takes ages to start on headless machines (30+ seconds) while it
doesn't even try to generate secret keys, probably just in openssl. Let's
just pre-load some random from various sources that depend on the hardware,
software, instance, time, etc (/proc, net/dev, /sys, firmware, config, date).
---
 .preinit | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/.preinit b/.preinit
index 4c65b90..4f4ef65 100644
--- a/.preinit
+++ b/.preinit
@@ -125,5 +125,8 @@ te INITSHELL=1
 ex /sbin/restore-etc
 |ec "Could not find flash file system with a valid configuration."
 
+# feed random from /proc, /sys, /etc
+rf /proc /proc/sys/kernel/random/boot_id /proc/self/maps /proc/net/dev /sys/firmware/devicetree/base /sys/firmware/acpi/tables /usr/share/factory/version /etc
+
 in /sbin/init-sysv
 
-- 
2.17.5