[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
bug#23605: /dev/urandom not seeded across reboots
From: |
Ludovic Courtès |
Subject: |
bug#23605: /dev/urandom not seeded across reboots |
Date: |
Sat, 28 May 2016 15:51:58 +0200 |
User-agent: |
Gnus/5.13 (Gnus v5.13) Emacs/24.5 (gnu/linux) |
Leo Famulari <address@hidden> skribis:
> On Tue, May 24, 2016 at 02:24:59PM +0200, Ludovic Courtès wrote:
>> Leo Famulari <address@hidden> skribis:
>>
>> > I realized that we don't seem to be saving any of the entropy in the
>> > kernel's random pool [0] across reboots.
>> >
>> > This means that for some period after boot, /dev/urandom may not be safe
>> > to use. From random(4):
>>
>> Good catch!
>>
>> Some comments:
>>
>> > +(define %urandom-seed-activation
>> > + ;; Activation gexp for the urandom seed
>> > + #~(begin
>> > + (use-modules (guix build utils))
>> > +
>> > + (mkdir-p "/var/run")
>> > + (close-port (open-file "/var/run/urandom-seed" "a0b"))
>>
>> Or simply ‘open-output-file’.
>
> I don't see a way to use (open-output-file) in "append" mode as with
> (open-file). Without that, the file is cleared before it is read in the
> following lines.
You’re right, sorry for the confusion.
Ludo’.
- bug#23605: /dev/urandom not seeded across reboots, (continued)
- bug#23605: /dev/urandom not seeded across reboots, Ludovic Courtès, 2016/05/28
- bug#23605: /dev/urandom not seeded across reboots, Leo Famulari, 2016/05/28
- bug#23605: /dev/urandom not seeded across reboots, Leo Famulari, 2016/05/28
- bug#23605: /dev/urandom not seeded across reboots, Leo Famulari, 2016/05/28
- bug#23605: /dev/urandom not seeded across reboots, Leo Famulari, 2016/05/28
- bug#23605: /dev/urandom not seeded across reboots, Ludovic Courtès, 2016/05/28
- bug#23605: /dev/urandom not seeded across reboots, Leo Famulari, 2016/05/28
- bug#23605: /dev/urandom not seeded across reboots, Leo Famulari, 2016/05/28
- bug#23605: /dev/urandom not seeded across reboots, Ludovic Courtès, 2016/05/29
bug#23605: /dev/urandom not seeded across reboots, Leo Famulari, 2016/05/27
- bug#23605: /dev/urandom not seeded across reboots,
Ludovic Courtès <=
bug#23605: /dev/urandom not seeded across reboots, Leo Famulari, 2016/05/27