From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <guix-devel-bounces+larch=yhetil.org@gnu.org>
Received: from mp11.migadu.com ([2001:41d0:8:6d80::])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits))
	by ms5.migadu.com with LMTPS
	id aDVcM4ut1mK/fwAAbAwnHQ
	(envelope-from <guix-devel-bounces+larch=yhetil.org@gnu.org>)
	for <larch@yhetil.org>; Tue, 19 Jul 2022 15:11:39 +0200
Received: from aspmx1.migadu.com ([2001:41d0:8:6d80::])
	(using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits))
	by mp11.migadu.com with LMTPS
	id iPtIM4ut1mL06gAA9RJhRA
	(envelope-from <guix-devel-bounces+larch=yhetil.org@gnu.org>)
	for <larch@yhetil.org>; Tue, 19 Jul 2022 15:11:39 +0200
Received: from lists.gnu.org (lists.gnu.org [209.51.188.17])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by aspmx1.migadu.com (Postfix) with ESMTPS id AA9D52873C
	for <larch@yhetil.org>; Tue, 19 Jul 2022 15:11:39 +0200 (CEST)
Received: from localhost ([::1]:57678 helo=lists1p.gnu.org)
	by lists.gnu.org with esmtp (Exim 4.90_1)
	(envelope-from <guix-devel-bounces+larch=yhetil.org@gnu.org>)
	id 1oDn0k-0003bW-Hg
	for larch@yhetil.org; Tue, 19 Jul 2022 09:11:38 -0400
Received: from eggs.gnu.org ([2001:470:142:3::10]:38826)
 by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
 (Exim 4.90_1) (envelope-from <me@tobias.gr>) id 1oDn0X-0003bM-Vx
 for guix-devel@gnu.org; Tue, 19 Jul 2022 09:11:26 -0400
Received: from tobias.gr ([2a02:c205:2020:6054::1]:53756)
 by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)
 (Exim 4.90_1) (envelope-from <me@tobias.gr>)
 id 1oDn0W-0003xj-1H; Tue, 19 Jul 2022 09:11:25 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; s=2018; bh=qBazKPCDqtIiD
 ZoJ6anvWcFTCgLFMNidGrl+DssChDM=;
 h=in-reply-to:date:subject:cc:to:
 from:references; d=tobias.gr; b=k0gK2BiWpnh3NMmepePkgpmOu61+c7YfNA4L7i
 bseZHIto5jrNkFNlQbCWVXbXi2YJitz3uJt3+zbsJN51DWb6N1zxE2ALEPOlDGSCioGcp7
 RLg4B60LzjKJEv/Y3j2LxvxHugRF6G8ASjGUXQQ/G9YsQHkim8VhgZuVrOqMNx7Iusscz1
 hoEst1/wBD7cuefk2hiED0m1PSORxSZM9tSKgfdPgko2cFdqfTcdz2McaBGaXFPVspNHpb
 s3mZSnFHtaFuyR6rqgqwLc66wfln4TC483CiZNT2YdTA8pZPKpv6H1/5ns6Jc+9ZlzZ6CP
 cA7HIeRHNYPhN2HvOY4Cmtlg==
Received: by submission.tobias.gr (OpenSMTPD) with ESMTPSA id 41989070
 (TLSv1.3:AEAD-AES256-GCM-SHA384:256:NO); 
 Tue, 19 Jul 2022 13:11:14 +0000 (UTC)
References: <87pmjlfdjl.fsf@contorta>
 <CAFHYt54b-D6FrvkG8PvUayzjWkqW62LgJzgexXHqcggxENfV8w@mail.gmail.com>
 <310AD876-916E-4020-A87E-5609E8166432@lepiller.eu>
 <YqCMT5v2ls44PNoB@3900XT> <87a6amgak1.fsf@contorta>
 <87r13grv6a.fsf@contorta> <87leth7ev6.fsf@contorta>
 <YrrKMjNsCuSmOgFZ@3900XT> <4BD0EAF3-DFA2-47B0-AFA0-AEAA2393F2A5@tobias.gr>
 <CAAqdTgMcTAAOpBofnQ-fshv+PSkz3u1T2y2Jt-t9t7RX985xfA@mail.gmail.com>
 <87letg21eb.fsf@contorta> <8C490441-06FA-45FE-BB0F-5E9C99DE0542@tobias.gr>
 <87lesz83bw.fsf@contorta> <87ilo3832q.fsf@contorta>
 <87edyi1xa9.fsf@gnu.org>
From: Tobias Geerinckx-Rice <me@tobias.gr>
To: Ludovic =?utf-8?Q?Court=C3=A8s?= <ludo@gnu.org>
Cc: Vagrant Cascadian <vagrant@reproducible-builds.org>, =?utf-8?Q?G=C3=A1?=
 =?utf-8?Q?bor?= Boskovits
 <gboskovits@gmail.com>, Guix Devel <guix-devel@gnu.org>, Efraim Flashner
 <efraim@flashner.co.il>, Julien Lepiller <julien@lepiller.eu>, Felix
 Lechner <felix.lechner@gmail.com>
Subject: Re: maradns reproducibility fixes and the merits of picking a
 random number
Date: Tue, 19 Jul 2022 15:09:34 +0200
In-reply-to: <87edyi1xa9.fsf@gnu.org>
BIMI-Selector: v=BIMI1; s=default;
Message-ID: <87bktll024@nckx>
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-=";
 micalg=pgp-sha512; protocol="application/pgp-signature"
Received-SPF: pass client-ip=2a02:c205:2020:6054::1; envelope-from=me@tobias.gr;
 helo=tobias.gr
X-Spam_score_int: -20
X-Spam_score: -2.1
X-Spam_bar: --
X-Spam_report: (-2.1 / 5.0 requ) BAYES_00=-1.9, DKIM_SIGNED=0.1,
 DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_PASS=-0.001,
 SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01 autolearn=ham autolearn_force=no
X-Spam_action: no action
X-BeenThere: guix-devel@gnu.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Development of GNU Guix and the GNU System distribution."
 <guix-devel.gnu.org>
List-Unsubscribe: <https://lists.gnu.org/mailman/options/guix-devel>,
 <mailto:guix-devel-request@gnu.org?subject=unsubscribe>
List-Archive: <https://lists.gnu.org/archive/html/guix-devel>
List-Post: <mailto:guix-devel@gnu.org>
List-Help: <mailto:guix-devel-request@gnu.org?subject=help>
List-Subscribe: <https://lists.gnu.org/mailman/listinfo/guix-devel>,
 <mailto:guix-devel-request@gnu.org?subject=subscribe>
Errors-To: guix-devel-bounces+larch=yhetil.org@gnu.org
Sender: "Guix-devel" <guix-devel-bounces+larch=yhetil.org@gnu.org>
X-Migadu-Flow: FLOW_IN
X-Migadu-To: larch@yhetil.org
X-Migadu-Country: US
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=yhetil.org;
	s=key1; t=1658236299;
	h=from:from:sender:sender:reply-to:subject:subject:date:date:
	 message-id:message-id:to:to:cc:cc:mime-version:mime-version:
	 content-type:content-type:in-reply-to:in-reply-to:
	 references:references:list-id:list-help:list-unsubscribe:
	 list-subscribe:list-post:dkim-signature;
	bh=qBazKPCDqtIiDZoJ6anvWcFTCgLFMNidGrl+DssChDM=;
	b=F48seKXA/YAFZSgkEvMOzlU04HyG/m7nea5g6eowF40kIYyX0DZlRoae/Zh3T6Is9ynauf
	erRN1KdHko33xlUs4iPIdkvNq+YAUiEesB1axpsbxjB/XSbYzZZTcG+Vr2keMYYOGy6ifP
	pHrM60gpnu2eVG/57y7djwdNCK4vJ+/3iQU3YA8QUcPQezid9bCI53q2nOkOfdAad3Arud
	Ms45adypgUMGOnmovD0Qbwo735AFLqt0bHNcJroq+KW/iodAd0FR4dCVhi7rr9H6oNez3W
	GiK2COFKVywWM+ADTjU4Nu2+EAx2pHAq+fs3LKhIYpvJxzfvmTfxOq6+pX5eRw==
ARC-Seal: i=1; s=key1; d=yhetil.org; t=1658236299; a=rsa-sha256; cv=none;
	b=jKVQPylLHUXzFAhs6ryiKtQlVyAUihxP74z/Tkz0yAyPnbUq1HQElcrWskRZ2FjiE7UbkI
	gYVNGvwbZv6erylxkhvHvX3WaIFPoDsg3RWzq/9ij3fnEV9WO6jYyqjA1gOfbTPna3P9vS
	TNkp/B5iIrhKX0Vh2V3X0WRmYyxzNZqPlHifw8WGzZj4sQGD3OixRJRWLOcLB/bVxAKX93
	PxOZFUKZIGgEdq6xtaZTkOrvMo/ZdF5S2OY9z89YDcwTkGB3j56/c+0iIa/IZj18weMCTY
	UpT6xtbZ8Xqs+h+NCXRRV/5rcowFp3intsOV29nPYC0UAa5/2P8+IFCf8rynlQ==
ARC-Authentication-Results: i=1;
	aspmx1.migadu.com;
	dkim=pass header.d=tobias.gr header.s=2018 header.b=k0gK2BiW;
	dmarc=pass (policy=reject) header.from=tobias.gr;
	spf=pass (aspmx1.migadu.com: domain of "guix-devel-bounces+larch=yhetil.org@gnu.org" designates 209.51.188.17 as permitted sender) smtp.mailfrom="guix-devel-bounces+larch=yhetil.org@gnu.org"
X-Migadu-Spam-Score: -7.53
Authentication-Results: aspmx1.migadu.com;
	dkim=pass header.d=tobias.gr header.s=2018 header.b=k0gK2BiW;
	dmarc=pass (policy=reject) header.from=tobias.gr;
	spf=pass (aspmx1.migadu.com: domain of "guix-devel-bounces+larch=yhetil.org@gnu.org" designates 209.51.188.17 as permitted sender) smtp.mailfrom="guix-devel-bounces+larch=yhetil.org@gnu.org"
X-Migadu-Queue-Id: AA9D52873C
X-Spam-Score: -7.53
X-Migadu-Scanner: scn0.migadu.com
X-TUID: 0VSHxXTSl2EW

--=-=-=
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: quoted-printable

Ludovic Court=C3=A8s =E5=86=99=E9=81=93=EF=BC=9A
> Honestly, I don=E2=80=99t think it=E2=80=99s worth bothering about the=20
> non-substitutable
> trick.

Agreed.

> In practice, maradns should be able to rely on /dev/urandom at
> run time, right?

That is my understanding.

Kind regards,

T G-R

--=-=-=
Content-Type: application/pgp-signature; name="signature.asc"

-----BEGIN PGP SIGNATURE-----

iIMEARYKACsWIQT12iAyS4c9C3o4dnINsP+IT1VteQUCYtatdA0cbWVAdG9iaWFz
LmdyAAoJEA2w/4hPVW15CJ0BAKy+hCl7kFasQFWKc3DJJM/fm2Hbd6mzXrlySwJ5
RVQXAQCdqyAZxFS2bkC+TPFRmb+qq8s3I9TkktigMZKJo+LwDQ==
=uE7G
-----END PGP SIGNATURE-----
--=-=-=--