nckx pushed a commit to branch master
in repository guix.
commit 4a147986a0839103a9c5bf1b5b74047c7d398349
Author: Tobias Geerinckx-Rice <[email protected]>
Date: Thu Oct 11 00:19:13 2018 +0200
gnu: haveged: Teach the controversy.
* gnu/packages/linux.scm (haveged)[description]: Suggest adding
additional entropy sources.
---
gnu/packages/linux.scm | 6 +++++-
1 file changed, 5 insertions(+), 1 deletion(-)
diff --git a/gnu/packages/linux.scm b/gnu/packages/linux.scm
index 7aaa7fb..79a1b0b 100644
--- a/gnu/packages/linux.scm
+++ b/gnu/packages/linux.scm
@@ -3760,7 +3760,11 @@ systems with high needs or limited user interaction,
such as headless servers.
indirect effects of hardware events on hidden processor state using the
HArdware
Volatile Entropy Gathering and Expansion (@dfn{HAVEGE}) algorithm. It tunes
itself to its environment and provides the same built-in test suite for the
-output stream as used on certified hardware security devices.")
+output stream as used on certified hardware security devices.
+
+The quality of the randomness produced by this algorithm has not been proven.
+It is recommended to run it together with another entropy source like rngd, and
+not as a replacement for it.")
(license (list (license:non-copyleft "file://nist/mconf.h")
(license:non-copyleft "file://nist/packtest.c")
license:public-domain ; nist/dfft.c
