1 files changed, 225 insertions, 0 deletions

diff --git a/templates/man8/systemd-boot-random-seed.service.8.pot b/templates/man8/systemd-boot-random-seed.service.8.pot
new file mode 100644
index 00000000..3087e02b
--- /dev/null
+++ b/templates/man8/systemd-boot-random-seed.service.8.pot
@@ -0,0 +1,225 @@
+# SOME DESCRIPTIVE TITLE
+# Copyright (C) YEAR Free Software Foundation, Inc.
+# This file is distributed under the same license as the PACKAGE package.
+# FIRST AUTHOR <EMAIL@ADDRESS>, YEAR.
+#
+#, fuzzy
+msgid ""
+msgstr ""
+"Project-Id-Version: PACKAGE VERSION\n"
+"POT-Creation-Date: 2024-03-01 17:10+0100\n"
+"PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n"
+"Last-Translator: FULL NAME <EMAIL@ADDRESS>\n"
+"Language-Team: LANGUAGE <LL@li.org>\n"
+"Language: \n"
+"MIME-Version: 1.0\n"
+"Content-Type: text/plain; charset=UTF-8\n"
+"Content-Transfer-Encoding: 8bit\n"
+
+#. type: TH
+#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
+#: mageia-cauldron
+#, no-wrap
+msgid "SYSTEMD-BOOT-RANDOM-SEED\\&.SERVICE"
+msgstr ""
+
+#. type: TH
+#: archlinux debian-unstable fedora-40 fedora-rawhide mageia-cauldron
+#, no-wrap
+msgid "systemd 255"
+msgstr ""
+
+#. type: TH
+#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
+#: mageia-cauldron
+#, no-wrap
+msgid "systemd-boot-random-seed.service"
+msgstr ""
+
+#.  -----------------------------------------------------------------
+#.  * MAIN CONTENT STARTS HERE *
+#.  -----------------------------------------------------------------
+#. type: SH
+#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
+#: mageia-cauldron
+#, no-wrap
+msgid "NAME"
+msgstr ""
+
+#. type: Plain text
+#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
+#: mageia-cauldron
+msgid ""
+"systemd-boot-random-seed.service - Refresh boot loader random seed at boot"
+msgstr ""
+
+#. type: SH
+#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
+#: mageia-cauldron
+#, no-wrap
+msgid "SYNOPSIS"
+msgstr ""
+
+#. type: Plain text
+#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
+#: mageia-cauldron
+msgid "systemd-boot-random-seed\\&.service"
+msgstr ""
+
+#. type: SH
+#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
+#: mageia-cauldron
+#, no-wrap
+msgid "DESCRIPTION"
+msgstr ""
+
+#. type: Plain text
+#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
+#: mageia-cauldron
+msgid ""
+"systemd-boot-random-seed\\&.service is a system service that automatically "
+"refreshes the boot loader random seed stored in the EFI System Partition "
+"(ESP), from the Linux kernel entropy pool\\&. The boot loader random seed is "
+"primarily consumed and updated by B<systemd-boot>(7)  from the UEFI "
+"environment (or B<systemd-stub>(7)  if the former is not used, but the "
+"latter is), and passed as initial RNG seed to the OS\\&. It is an effective "
+"way to ensure the OS comes up with a random pool that is fully "
+"initialized\\&."
+msgstr ""
+
+#. type: Plain text
+#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
+#: mageia-cauldron
+msgid ""
+"The service also automatically generates a \\*(Aqsystem token\\*(Aq to store "
+"in an EFI variable in the system\\*(Aqs NVRAM\\&. The boot loader may then "
+"combine the on-disk random seed and the system token by cryptographic "
+"hashing, and pass it to the OS it boots as initialization seed for its "
+"entropy pool\\&. Note: the random seed stored in the ESP is refreshed on "
+"I<every> reboot ensuring that multiple subsequent boots will boot with "
+"different seeds\\&. On the other hand, the system token is generated "
+"randomly I<once>, and then persistently stored in the system\\*(Aqs EFI "
+"variable storage, ensuring the same disk image won\\*(Aqt result in the same "
+"series of boot loader seed values if used on multiple systems in parallel\\&."
+msgstr ""
+
+#. type: Plain text
+#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
+#: mageia-cauldron
+msgid ""
+"The systemd-boot-random-seed\\&.service unit invokes the B<bootctl random-"
+"seed> command, which updates the random seed in the ESP, and initializes the "
+"system token if it\\*(Aqs not initialized yet\\&. The service is "
+"conditionalized so that it is run only when a boot loader is used that "
+"implements the \\m[blue]B<Boot Loader "
+"Interface>\\m[]\\&\\s-2\\u[1]\\d\\s+2\\&."
+msgstr ""
+
+#. type: Plain text
+#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
+#: mageia-cauldron
+msgid ""
+"For further details see B<bootctl>(1), regarding the command this service "
+"invokes\\&."
+msgstr ""
+
+#. type: Plain text
+#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
+#: mageia-cauldron
+msgid ""
+"Note the relationship between systemd-boot-random-seed\\&.service and "
+"B<systemd-random-seed>(8)\\&. The former maintains the random seed consumed "
+"and updated by the boot environment (i\\&.e\\&. by B<systemd-boot>(7)  or "
+"B<systemd-stub>(7)), the latter maintains a random seed consumed and updated "
+"by the OS itself\\&. The former ensures that the OS has a filled entropy "
+"pool already during earliest boot when regular disk access is not available "
+"yet (i\\&.e\\&. when the OS random seed cannot be loaded yet)\\&. The latter "
+"is processed much later, once writable disk access is available\\&. Thus it "
+"cannot be used to seed the initial boot phase, but typically has much higher "
+"quality of entropy\\&. Both files are consumed and updated at boot, but at "
+"different times\\&. Specifically:"
+msgstr ""
+
+#. type: Plain text
+#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
+#: mageia-cauldron
+msgid ""
+"In UEFI mode, the B<systemd-boot>(7)  or B<systemd-stub>(7)  components load "
+"the boot loader random seed from the ESP, hash it with available entropy and "
+"the system token, and then update it on disk\\&. A derived seed is passed to "
+"the kernel which writes it to its entropy pool\\&."
+msgstr ""
+
+#. type: Plain text
+#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
+#: mageia-cauldron
+msgid ""
+"In userspace the systemd-random-seed\\&.service service loads the OS random "
+"seed, writes it to the kernel entropy pool, and then updates it on disk with "
+"a new value derived from the kernel entropy pool\\&."
+msgstr ""
+
+#. type: Plain text
+#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
+#: mageia-cauldron
+msgid ""
+"In userspace the systemd-boot-random-seed\\&.service service updates the "
+"boot loader random seed with a new value derived from the kernel entropy "
+"pool\\&."
+msgstr ""
+
+#. type: Plain text
+#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
+#: mageia-cauldron
+msgid ""
+"This logic should ensure that the kernel\\*(Aqs entropy pool is seeded "
+"during earliest bool already, if possible, but the highest quality entropy "
+"is propagated back to both on-disk seeds\\&."
+msgstr ""
+
+#. type: SH
+#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
+#: mageia-cauldron
+#, no-wrap
+msgid "SEE ALSO"
+msgstr ""
+
+#. type: Plain text
+#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
+#: mageia-cauldron
+msgid ""
+"B<systemd>(1), B<random>(4), B<bootctl>(1), B<systemd-boot>(7), B<systemd-"
+"stub>(7), B<systemd-random-seed.service>(8)"
+msgstr ""
+
+#. type: SH
+#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
+#: mageia-cauldron
+#, no-wrap
+msgid "NOTES"
+msgstr ""
+
+#. type: IP
+#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
+#: mageia-cauldron
+#, no-wrap
+msgid " 1."
+msgstr ""
+
+#. type: Plain text
+#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
+#: mageia-cauldron
+msgid "Boot Loader Interface"
+msgstr ""
+
+#. type: Plain text
+#: archlinux debian-bookworm debian-unstable fedora-40 fedora-rawhide
+#: mageia-cauldron
+msgid "\\%https://systemd.io/BOOT_LOADER_INTERFACE"
+msgstr ""
+
+#. type: TH
+#: debian-bookworm
+#, no-wrap
+msgid "systemd 254"
+msgstr ""