2
0
mirror of https://github.com/NixOS/nixpkgs.git synced 2025-02-16 00:54:40 +00:00
nixpkgs/nixos/modules/services/security/jitterentropy-rngd.nix
Markus Theil e98a8367ec jitterentropy-rngd: init at 1.2.8
Add jitterentropy-rngd, a tool similar to rng-tools.
While not necessarily needed, it is useful for those
who want to strengthen their kernel entropy input pool
by periodic insertion of an independent source.

The entropy source is a NIST SP800-90B compliant
non-physical true RNG source on most systems.
See the jitterentropy documentation for details
(http://chronox.de/jent/doc/CPU-Jitter-NPTRNG.pdf).

Signed-off-by: Markus Theil <theil.markus@gmail.com>
2023-10-20 10:04:11 +02:00

19 lines
495 B
Nix

{ lib, config, pkgs, ... }:
let
cfg = config.services.jitterentropy-rngd;
in
{
options.services.jitterentropy-rngd = {
enable =
lib.mkEnableOption (lib.mdDoc "jitterentropy-rngd service configuration");
package = lib.mkPackageOptionMD pkgs "jitterentropy-rngd" { };
};
config = lib.mkIf cfg.enable {
systemd.packages = [ cfg.package ];
systemd.services."jitterentropy".wantedBy = [ "basic.target" ];
};
meta.maintainers = with lib.maintainers; [ thillux ];
}