CVS commit: [netbsd-7] src/lib/libc/gen

To: source-changes%NetBSD.org@localhost
Subject: CVS commit: [netbsd-7] src/lib/libc/gen
From: "Soren Jacobsen" <snj%netbsd.org@localhost>
Date: Wed, 18 Mar 2015 07:50:01 +0000

Module Name:    src
Committed By:   snj
Date:           Wed Mar 18 07:50:01 UTC 2015

Modified Files:
        src/lib/libc/gen [netbsd-7]: arc4random.3 arc4random.c

Log Message:
Pull up following revision(s) (requested by riastradh in ticket #597):
        lib/libc/gen/arc4random.c: revisions 1.26-1.28
        lib/libc/gen/arc4random.3:: revisions 1.10-1.19
Rewrite arc4random(3) with ChaCha20-based PRNG and per-thread state.
Explain the security model in the man page.
No more RC4!
--
Grammar.
--
Note relation of arc4random(3) to rand(3)/random(3).
--
Ruminate on security model choices and API design in arc4random(3).
--
Amplify comment about how quickly RC4 was known to be bad.
--
Markup for BUGS note about arc4random_uniform.
--
Cross-reference rnd(4).
--
Remove unnecessary Ns before punctuation. Fix a line.
--
Fix Google Groups link.
--
Tweak wording, define `output', remove misplaced scaremongering.
--
Fix non _REENTRANT build.
--
Use ChaCha20 here as advertised, not ChaCha8.
Oops.
Fortunately, there is no public cryptanalysis even of ChaCha8: the
best published attack is on ChaCha7 with time complexity 2^248.


To generate a diff of this commit:
cvs rdiff -u -r1.9 -r1.9.22.1 src/lib/libc/gen/arc4random.3
cvs rdiff -u -r1.25 -r1.25.2.1 src/lib/libc/gen/arc4random.c

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Prev by Date: CVS commit: [netbsd-7] src
Next by Date: CVS commit: [netbsd-7] src/share/man/man2
Previous by Thread: CVS commit: [netbsd-7] src
Next by Thread: CVS commit: [netbsd-7] src/share/man/man2
Indexes:

Home | Main Index | Thread Index | Old Index