Date: Tue, 17 Mar 2015 16:22:16 -0500 From: Pedro Giffuni <pfg@FreeBSD.org> To: Steve Kargl <sgk@troutmask.apl.washington.edu>, "Dennis E. Hamilton" <dennis.hamilton@acm.org> Cc: freebsd-numerics@FreeBSD.org Subject: Re: Random number generators Message-ID: <55089B08.4020501@FreeBSD.org> In-Reply-To: <20150317184618.GA24951@troutmask.apl.washington.edu> References: <7CBD7758-9472-4A2E-8065-EC6E68EE8DAB@FreeBSD.org> <20150317060310.GA21975@troutmask.apl.washington.edu> <F6137E2C-FDF2-46B3-BFC2-1975AFA40951@FreeBSD.org> <00a001d060d7$0077f100$0167d300$@acm.org> <20150317184618.GA24951@troutmask.apl.washington.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
On 03/17/15 13:46, Steve Kargl wrote: > On Tue, Mar 17, 2015 at 10:22:51AM -0700, Dennis E. Hamilton wrote: >> If you are serious about crypto grade randomness, libc is probably >> not the answer. Generally, I don't think reliance on a single >> generator for general purpose use and for cryptographic quality >> is going to work well. This is a very context-sensitive situation >> and addressing specific threat models against cryptographic PRGs >> is a very different matter from wanting unpredictable and good >> quality pseudo-randoms for simulations and other purposes. >> > I intrepeted Pedro's original email to mean something better > than rand(3) and random(3). You interpreted right. Unfortunately I don't see us changing the POSIX behavior in libc (specially not in the brutal way OpenBSD did), and even if we were to change it, we would still have to carry the old version for compatibility through symbol versioning so the only choice for interested parties is to add their own implementation, and live with the bloat of existing versions. It was really nice to learn about kiss() though. Pedro.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?55089B08.4020501>