cvs commit: src/sys/libkern arc4random.c

[Mark Murray]

Sam Leffler writes:
> > Having a /dev/random which is sometimes (chroot/jail) means that
> > applications running under those circumstances are incredible fragile
> > to spoofing by creating a fake "/dev/random" in some way.
> 
> openbsd defined a sysctl to get data from arc4random.  They use this as a 
> fallback if /dev/random or similar is not available.  Applications that 
> wanted to be paranoid about spoofing could use this directly.  I have not 
> compared the goodness of the data from /dev/random and arc4random.

I am working on an openbsd-compatible sysctl.

M
--
Mark Murray
iumop ap!sdn w,I idlaH