* Rich Felker: > AT_RANDOM is unusable as a fallback here because it's equivalent to > GRND_INSECURE. It's silently broken at early boot time. In musl we're > likely going to end up using the legacy SYS_sysctl on pre-getrandom > kernels even though it spammed syslog just because it seems to be the > only way to get blocking secure entropy on those kernels. Even pre-getrandom, sysctl was rarely enabled in kernel configurations if I recall correctly. I doubt it is an option to avoid process termination with old kernels/seccomp filters. Thanks, Florian