From owner-cvs-all  Sat Feb 15  1:32:55 2003
Delivered-To: cvs-all@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP
	id 4835D37B401; Sat, 15 Feb 2003 01:32:54 -0800 (PST)
Received: from phk.freebsd.dk (phk.freebsd.dk [212.242.86.175])
	by mx1.FreeBSD.org (Postfix) with ESMTP
	id 33DC043FBF; Sat, 15 Feb 2003 01:32:53 -0800 (PST)
	(envelope-from phk@phk.freebsd.dk)
Received: from critter.freebsd.dk (critter.freebsd.dk [212.242.86.163])
	by phk.freebsd.dk (8.12.6/8.12.6) with ESMTP id h1F9Wm6E017254;
	Sat, 15 Feb 2003 09:32:48 GMT
	(envelope-from phk@phk.freebsd.dk)
Received: from critter.freebsd.dk (localhost [127.0.0.1])
	by critter.freebsd.dk (8.12.6/8.12.6) with ESMTP id h1F9WWdL008835;
	Sat, 15 Feb 2003 10:32:32 +0100 (CET)
	(envelope-from phk@phk.freebsd.dk)
To: David Schultz <dschultz@uclink.Berkeley.EDU>
Cc: "Andrey A. Chernov" <ache@nagual.pp.ru>,
	Nate Lawson <nate@root.org>, Juli Mallett <jmallett@FreeBSD.org>,
	Kirk McKusick <mckusick@FreeBSD.org>, src-committers@FreeBSD.org,
	cvs-src@FreeBSD.org, cvs-all@FreeBSD.org
Subject: Re: cvs commit: src/sbin/newfs mkfs.c src/sys/ufs/ffs ffs_alloc.c ffs_vfsops.c 
From: phk@phk.freebsd.dk
In-Reply-To: Your message of "Fri, 14 Feb 2003 19:38:07 PST."
             <20030215033807.GB3750@HAL9000.homeunix.com> 
Date: Sat, 15 Feb 2003 10:32:32 +0100
Message-ID: <8834.1045301552@critter.freebsd.dk>
Sender: owner-cvs-all@FreeBSD.ORG
Precedence: bulk
List-ID: <cvs-all.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20cvs-all>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20cvs-all>
X-Loop: FreeBSD.ORG

In message <20030215033807.GB3750@HAL9000.homeunix.com>, David Schultz writes:

>The issue isn't how random the data ``feels'' according to ad hoc
>tests; the issue is predictability.  NFS relies upon generation
>numbers being unguessable to prevent unauthenticated clients from
>spoofing file handles.  Even if random() is a pretty good PRNG,
>arc4random() gives people peace of mind because it uses a real
>cryptographic hash.  If you could guess arc4random() values
>without knowing the entropy pool, that would likely constitute an
>attack on RC4 itself.

The issue at hand, as far as I'm concerned is that the regression
test was broken.

-- 
Poul-Henning Kamp       | UNIX since Zilog Zeus 3.20
phk@FreeBSD.ORG         | TCP/IP since RFC 956
FreeBSD committer       | BSD since 4.3-tahoe    
Never attribute to malice what can adequately be explained by incompetence.

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message