[PATCH v3] Seed random generator in main()

Douglas Bagnall douglas.bagnall at catalyst.net.nz
Wed Jun 17 15:28:13 MDT 2015


hi Simo,

On 18/06/15 04:11, Simo wrote:
>> On BSDs I would consider the system arc4random functions in that
>> league. At least that's what all the documentation suggests. Please
>> correct me if I'm wrong.
> 
> Well given that RC4 streams are not considered secure anymore in the
> context of TLS connections, I am not sure a PRNG based on RC4 should be.

Don't be fooled by the name. The arc4random functions use ChaCha20 in
Open- and Net- BSDs, and I think the other ones are coming round.
(See e.g. http://bxr.su/NetBSD/lib/libc/gen/arc4random.c or
https://en.wikipedia.org/wiki/Salsa20#ChaCha20_adoption).

cheers,
Douglas



More information about the samba-technical mailing list