Leo Famulari <[email protected]> skribis: > On Tue, May 24, 2016 at 02:24:59PM +0200, Ludovic Courtès wrote: >> Leo Famulari <[email protected]> skribis: >> >> > I realized that we don't seem to be saving any of the entropy in the >> > kernel's random pool [0] across reboots. >> > >> > This means that for some period after boot, /dev/urandom may not be safe >> > to use. From random(4): >> >> Good catch! >> >> Some comments: >> >> > +(define %urandom-seed-activation >> > + ;; Activation gexp for the urandom seed >> > + #~(begin >> > + (use-modules (guix build utils)) >> > + >> > + (mkdir-p "/var/run") >> > + (close-port (open-file "/var/run/urandom-seed" "a0b")) >> >> Or simply ‘open-output-file’. > > I don't see a way to use (open-output-file) in "append" mode as with > (open-file). Without that, the file is cleared before it is read in the > following lines.
You’re right, sorry for the confusion. Ludo’.
