Home page logo

nmap-dev logo Nmap Development mailing list archives

Re: PRNG benchmark results and proposal
From: Fyodor <fyodor () insecure org>
Date: Sun, 4 May 2008 18:19:49 -0700

On Mon, May 05, 2008 at 12:45:05AM +0000, Brandon Enright wrote:

So, I propose we change all random number generation to use DNet's PRNG
at all times.  It is fast, portable C, already included in Nmap, and
quite a bit higher quality than we actually /need/.

Thanks for benchmarking.  Sounds good to me!

I'd like someone to weigh in on BSD/GPL licensing conflicts before I
proceed to either use rand.c or re-write rand.c for nbase_rnd.

I believe the BSD/GPL licensing conflict involves traditional BSD with
advertising clause.  Libdnet doesn't have that clause (see
nmap/libdnet-stripped/LICENSE).  So code from dnet's rand.c can be
used.  Of course the rand.c authors need to be credited in the code
(even if it is rewritten).

So I'm not opposed to rewriting the code if it is short, but we don't
have to either.


Sent through the nmap-dev mailing list
Archived at http://SecLists.Org

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]