> 2010/12/22 Theo de Raadt <dera...@cvs.openbsd.org>: > >> 2010/12/21 Kurt Knochner <cdowl...@googlemail.com>: > >> > instead of just prepending it. MD5 and the like does not seem to be > >> > necessary, as buf will allways contain some good random data. > >> > >> I wanted to say: get_random_bytes() will allways return enough good > >> random values. > > > > That is completely irrelevant because get_random_bytes() is only used > > as the *source material* for a RC4-based PRNG. > > > > WE HAVE THREE LAYERS OF PRNG. > > so, you are saying, that the use of nanotime() in arc4_stir() is irrelevant? > > That would be a result I can accept, as I already said: It could mean nothing.
12 to 16 bytes of kind-of-known but not really known data are mixed with 256 - (12 to 16) bytes of data to from the initial state of RC4, which is then filtered by dropping the first 256 or 256*4 bytes of data as written in the best paper that exists today. Is it relevant?