Annotation of src/usr.sbin/sysinst/msg.entropy.pl, Revision 1.1
1.1 ! martin 1: /* $NetBSD: gpt.c,v 1.22 2020/10/14 04:17:43 martin Exp $ */
! 2:
! 3: /*
! 4: * Copyright 2018 The NetBSD Foundation, Inc.
! 5: * All rights reserved.
! 6: *
! 7: * Redistribution and use in source and binary forms, with or without
! 8: * modification, are permitted provided that the following conditions
! 9: * are met:
! 10: * 1. Redistributions of source code must retain the above copyright
! 11: * notice, this list of conditions and the following disclaimer.
! 12: * 2. Redistributions in binary form must reproduce the above copyright
! 13: * notice, this list of conditions and the following disclaimer in the
! 14: * documentation and/or other materials provided with the distribution.
! 15: *
! 16: * THIS SOFTWARE IS PROVIDED BY PIERMONT INFORMATION SYSTEMS INC. ``AS IS''
! 17: * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
! 18: * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
! 19: * ARE DISCLAIMED. IN NO EVENT SHALL PIERMONT INFORMATION SYSTEMS INC. BE
! 20: * LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
! 21: * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
! 22: * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
! 23: * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
! 24: * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
! 25: * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF
! 26: * THE POSSIBILITY OF SUCH DAMAGE.
! 27: *
! 28: */
! 29:
! 30: message not_enough_entropy
! 31: {This system seems to lack a cryptographically strong pseudo random
! 32: number generator. There is not enough entropy available to create secure
! 33: keys (e.g. ssh host keys).
! 34:
! 35: You may use random data generated on another computer and load it
! 36: here, or you could enter random characters manually.
! 37:
! 38: If you own a USB random number device, connect it now and select
! 39: the "Re-test" option.}
! 40:
! 41: message entropy_add_manually {Manual input of random data}
! 42: message entropy_download_raw {Load random data}
! 43: message entropy_download_seed {Import a NetBSD entropy file}
! 44: message entropy_retry {Re-test}
! 45:
! 46: message entropy_enter_manual1
! 47: {Enter random characters.}
! 48:
! 49: message entropy_enter_manual2
! 50: {They should contain at last 256 bits of randomness, as in 256 coin
! 51: tosses, 100 throws of a 6-sided die, 64 random hexadecimal digits, or
! 52: (if you are able to copy & paste output from another machine into this
! 53: installer) the output from running the following command on another
! 54: machine whose randomness you trust:}
! 55:
! 56: message entropy_enter_manual3
! 57: {Do not use the same data for multiple installations.
! 58: Terminate the input with an empty line.}
! 59:
! 60: message entropy_manual_not_enough
! 61: {You did not enter enough characters!}
! 62:
! 63: message entropy_select_file
! 64: {Please select how you want to transfer the random data file
! 65: to this machine:}
! 66:
! 67: message entropy_add_download_ftp
! 68: {Download via ftp}
! 69:
! 70: message entropy_add_download_http
! 71: {Download via http}
! 72:
! 73: message download_entropy
! 74: {Start download}
! 75:
! 76: message entropy_add_nfs
! 77: {Load from a NFS share}
! 78:
! 79: message entropy_add_local
! 80: {Load from a local file system (e.g. a USB device)}
! 81:
! 82: message entropy_file
! 83: {Path/file}
! 84:
! 85: message load_entropy
! 86: {Load random data}
! 87:
! 88: message set_entropy_file
! 89: {Random data file path}
! 90:
! 91: /* Called with: Example
! 92: * $0 = content of file NetBSD entropy seed file
! 93: */
! 94: message entropy_via_nfs
! 95: {Select a server, a share and the file path to load the $0.}
! 96:
! 97: /* Called with: Example
! 98: * $0 = content of file NetBSD entropy seed file
! 99: */
! 100: message entropy_via_download
! 101: {Since not enough entropy is available on this system, all crytographic
! 102: operations are suspect to replay attacks.
! 103: Please only use trustworthy local networks.}
! 104:
! 105: message entropy_data
! 106: {random data binary file}
! 107:
! 108: message entropy_data_hdr
! 109: {On a system with cryptographically strong pseudo random number generator
! 110: you can create a file with random binary data like this:}
! 111:
! 112: message entropy_seed
! 113: {NetBSD entropy seed file}
! 114:
! 115: message entropy_seed_hdr
! 116: {On a NetBSD system with cryptographically strong pseudo random number
! 117: generator you can create an entropy snapshot like this:}
! 118:
! 119: message entropy_path_and_file
! 120: {Path and filename}
! 121:
! 122: message entropy_localfs
! 123: {Enter the unmounted local device and directory on that device where
! 124: the random data is located.}
! 125:
CVSweb <webmaster@jp.NetBSD.org>