[src/trunk]: src/lib/libc/gen Use ChaCha20 here as advertised, not ChaCha8.

[riastradh <riastradh%NetBSD.org@localhost>]

details:   https://anonhg.NetBSD.org/src/rev/cc5b67d839f9
branches:  trunk
changeset: 335683:cc5b67d839f9
user:      riastradh <riastradh%NetBSD.org@localhost>
date:      Wed Jan 21 02:47:39 2015 +0000

description:
Use ChaCha20 here as advertised, not ChaCha8.

Oops.

Fortunately, there is no public cryptanalysis even of ChaCha8: the
best published attack is on ChaCha7 with time complexity 2^248.

diffstat:

 lib/libc/gen/arc4random.c |  6 +++---
 1 files changed, 3 insertions(+), 3 deletions(-)

diffs (27 lines):

diff -r 959f8aecfb3f -r cc5b67d839f9 lib/libc/gen/arc4random.c
--- a/lib/libc/gen/arc4random.c Wed Jan 21 02:05:47 2015 +0000
+++ b/lib/libc/gen/arc4random.c Wed Jan 21 02:47:39 2015 +0000
@@ -1,4 +1,4 @@
-/*     $NetBSD: arc4random.c,v 1.27 2015/01/20 18:31:25 christos Exp $ */
+/*     $NetBSD: arc4random.c,v 1.28 2015/01/21 02:47:39 riastradh Exp $        */
 
 /*-
  * Copyright (c) 2014 The NetBSD Foundation, Inc.
@@ -52,7 +52,7 @@
  */
 
 #include <sys/cdefs.h>
-__RCSID("$NetBSD: arc4random.c,v 1.27 2015/01/20 18:31:25 christos Exp $");
+__RCSID("$NetBSD: arc4random.c,v 1.28 2015/01/21 02:47:39 riastradh Exp $");
 
 #include "namespace.h"
 #include "reentrant.h"
@@ -109,7 +109,7 @@
 #define        crypto_core_KEYBYTES    32
 #define        crypto_core_CONSTBYTES  16
 
-#define        crypto_core_ROUNDS      8
+#define        crypto_core_ROUNDS      20
 
 static uint32_t
 rotate(uint32_t u, unsigned c)