With the introduction of jitter-rng in the kernel (upstream 50ee7529ec45 ("random: try to actively add entropy rather than passively wait for it") as of v5.4-rc1 we generally have enough entropy in all cases and do not need rngd to run in userspace anymore. We should therefore not enable rngd by default in Fedora and RHEL-8 going forward and let users explicitly enable it as needed. This will save some cycles by default, also good for future minimization. This bug was initially created as a copy of RHEL8's Bug #1888695.
The simplest and a proper way to do that is systemctl presets. As of now they enable rngd both in Fedora and RHEL8: # grep -ri rng /usr/lib/systemd/system-preset/ /usr/lib/systemd/user-preset/ /usr/lib/systemd/system-preset/90-default.preset:enable rngd.service We need to change "enable" to "disable" or remove this line.
bz1222495 states that a proper component for this is 'fedora-release'.
So, actually, it was removed from the standard group in comps: https://pagure.io/fedora-comps/pull-request/533 So, it's no longer installed by default. I don't think we want to drop the presets, I think just dropping it like we did took care of it?
> So, it's no longer installed by default. I don't think we want to drop the > presets, I think just dropping it like we did took care of it? Agreed, if people wish to install it I think it's useful to be enabled by default if there's an available HW RNG.
(In reply to Kevin Fenzi from comment #3) > So, it's no longer installed by default. I don't think we want to drop the > presets, I think just dropping it like we did took care of it? Thanks, Kevin. Agreed, not installing rngd by default should be enough.
OK, let's close this then.