openrc/init.d/urandom.in

#!@SBINDIR@/openrc-run
# Copyright (c) 2007-2022 The OpenRC Authors.
# See the Authors file at the top-level directory of this distribution and
# https://github.com/OpenRC/openrc/blob/HEAD/AUTHORS
#
# This file is part of OpenRC. It is subject to the license terms in
# the LICENSE file found in the top-level directory of this
# distribution and at https://github.com/OpenRC/openrc/blob/HEAD/LICENSE
# This file may not be copied, modified, propagated, or distributed
# except according to the terms contained in the LICENSE file.

export SEEDRNG_SEED_DIR="${seed_dir:-/var/lib/seedrng}"
export SEEDRNG_LOCK_FILE="${lock_file:-/var/run/seedrng.lock}"
export SEEDRNG_SKIP_CREDIT="${skip_credit:-false}"
: ${urandom_seed:=${SEEDRNG_SEED_DIR}/../misc/random-seed}
description="Initializes the random number generator."

depend()
{
	after clock
	need localmount
	keyword -docker -jail -lxc -openvz -prefix -systemd-nspawn
}

save_seed()
{
	(	# sub shell to prevent umask pollution
		umask 077
		dd if=/dev/urandom of="$urandom_seed" count=1 2>/dev/null
	)
}

start()
{
	if [ "$RC_UNAME" = Linux ]; then
		seedrng
	else
		[ -c /dev/urandom ] || return
		if [ -f "$urandom_seed" ]; then
			ebegin "Initializing random number generator"
			cat "$urandom_seed" > /dev/urandom
			eend $? "Error initializing random number generator"
		fi
		rm -f "$urandom_seed" && save_seed
	fi
	return 0
}

stop()
{
	if [ "$RC_UNAME" = Linux ]; then
		seedrng
	else
		ebegin "Saving random seed"
		save_seed
		eend $? "Failed to save random seed"
	fi
}