Module Name: src Committed By: snj Date: Wed Mar 18 07:50:01 UTC 2015
Modified Files: src/lib/libc/gen [netbsd-7]: arc4random.3 arc4random.c Log Message: Pull up following revision(s) (requested by riastradh in ticket #597): lib/libc/gen/arc4random.c: revisions 1.26-1.28 lib/libc/gen/arc4random.3:: revisions 1.10-1.19 Rewrite arc4random(3) with ChaCha20-based PRNG and per-thread state. Explain the security model in the man page. No more RC4! -- Grammar. -- Note relation of arc4random(3) to rand(3)/random(3). -- Ruminate on security model choices and API design in arc4random(3). -- Amplify comment about how quickly RC4 was known to be bad. -- Markup for BUGS note about arc4random_uniform. -- Cross-reference rnd(4). -- Remove unnecessary Ns before punctuation. Fix a line. -- Fix Google Groups link. -- Tweak wording, define `output', remove misplaced scaremongering. -- Fix non _REENTRANT build. -- Use ChaCha20 here as advertised, not ChaCha8. Oops. Fortunately, there is no public cryptanalysis even of ChaCha8: the best published attack is on ChaCha7 with time complexity 2^248. To generate a diff of this commit: cvs rdiff -u -r1.9 -r1.9.22.1 src/lib/libc/gen/arc4random.3 cvs rdiff -u -r1.25 -r1.25.2.1 src/lib/libc/gen/arc4random.c Please note that diffs are not public domain; they are subject to the copyright notices on the relevant files.