Recently I have come across [1] Jason Donenfeld's SeedRNG [2] which provides
a correct way of handling RNG initialization/seeding in early init and shutdown.
As the code is meant to be reused and handles the process properly,
I believe it is worth looking into.
Maybe it could even be the backbone of s6-fillurandompool if adding the
requirement of using a seed file is acceptable?
[1]:
https://twitter.com/EdgeSecurity/status/1509002499507818500
[2]:
https://git.zx2c4.com/seedrng/about/
Cheers,
- Aydin
Received on Fri Apr 08 2022 - 13:18:17 CEST