tech-security: Re: replace kernel random number function

Subject: Re: replace kernel random number function
To: Johan Danielsson <joda@pdc.kth.se>
From: None <itojun@iijlab.net>
List: tech-security
Date: 10/23/2000 09:20:23

  by mail.netbsd.org with SMTP; 23 Oct 2000 00:20:32 -0000
	by coconut.itojun.org (8.9.3+3.2W/3.7W) with ESMTP id JAA07440;
	Mon, 23 Oct 2000 09:20:23 +0900 (JST)
To: joda@pdc.kth.se (Johan Danielsson)
cc: tech-security@netbsd.org, tech-kern@netbsd.org
In-reply-to: joda's message of 22 Oct 2000 17:46:43 +0200.
      <xof4s24ubdo.fsf@blubb.pdc.kth.se>
Subject: Re: replace kernel random number function
From: itojun@iijlab.net
Date: Mon, 23 Oct 2000 09:20:23 +0900
Message-ID: <7438.972260423@coconut.itojun.org>


>> i plan to replace kernel random(9) with libc random(3) code, or
>> arc4random.  any comments?
>Shouldn't this use rnd(9), or is that too slow?

	there are places where:
	- we need better random number than random(9) does, and
	- it does not need to be too good like rnd(4).
	if we use rnd(4) too much, we use up entropy (and it is a bad thing).

itojun