Add a prominent warning about these functions' unsuitability for

cryptographic purposes, and recommend using arc4random(3) instead.
author: des <des@FreeBSD.org> 2012-09-04 21:40:53 +0000
committer: des <des@FreeBSD.org> 2012-09-04 21:40:53 +0000
commit: 2d0a5cb1e0e9d676c2b3e5999c28379692844fe9 (patch)
tree: 5c7773f188d47ed604cda96e02f329d653214533 /lib/libc/stdlib/rand.3
parent: dec17a5bb53dc001725a88fd95fc97330c8dea34 (diff)
download: FreeBSD-src-2d0a5cb1e0e9d676c2b3e5999c28379692844fe9.zip
FreeBSD-src-2d0a5cb1e0e9d676c2b3e5999c28379692844fe9.tar.gz
1 files changed, 7 insertions, 6 deletions
diff --git a/lib/libc/stdlib/rand.3 b/lib/libc/stdlib/rand.3
index 3eb1a1d..6805073 100644
--- a/lib/libc/stdlib/rand.3
+++ b/lib/libc/stdlib/rand.3
@@ -55,9 +55,15 @@
 .Fn rand_r "unsigned *ctx"
 .Sh DESCRIPTION
 .Bf -symbolic
+The functions described in this manual page are not cryptographically
+secure.
+Cryptographic applications should use
+.Xr arc4random 3
+instead.
+.Ef
+.Pp
 These interfaces are obsoleted by
 .Xr random 3 .
-.Ef
 .Pp
 The
 .Fn rand
@@ -88,9 +94,6 @@ The
 function initializes a seed using the
 .Xr random 4
 random number device which returns good random numbers.
-However, the
-.Fn rand
-function still remains unsuitable for cryptographic use.
 .Pp
 The
 .Fn rand_r
@@ -105,8 +108,6 @@ For better generator quality, use
 .Xr random 3
 or
 .Xr lrand48 3 .
-Applications requiring cryptographic quality randomness should use
-.Xr arc4random 3 .
 .Sh SEE ALSO
 .Xr arc4random 3 ,
 .Xr lrand48 3 ,
author	des <des@FreeBSD.org>	2012-09-04 21:40:53 +0000
committer	des <des@FreeBSD.org>	2012-09-04 21:40:53 +0000
commit	2d0a5cb1e0e9d676c2b3e5999c28379692844fe9 (patch)
tree	5c7773f188d47ed604cda96e02f329d653214533 /lib/libc/stdlib/rand.3
parent	dec17a5bb53dc001725a88fd95fc97330c8dea34 (diff)
download	FreeBSD-src-2d0a5cb1e0e9d676c2b3e5999c28379692844fe9.zip FreeBSD-src-2d0a5cb1e0e9d676c2b3e5999c28379692844fe9.tar.gz