Solaris: consistantly use /dev/random source

[josephlr]

On Solaris, we opt to use /dev/random instead of /dev/urandom due to reasons explained in the comments and in this Solaris blog post.

However, we haven't been making the same choice when getting randomness via the getrandom(2) function, as we just pass 0 for the flags. We used to always set GRND_RANDOM, but that was removed in the move from OsRng to this crate.

For context, rust-random/rand#730, #9, and #51 are the major changes to the Solaris/Illumos implementation over the years.

See the solaris documentation for:

• getrandom(2)
• urandom(4)

I also updated the doucmentation to better reflect when Illumos added the getrandom(2) function.

Finally, a question. #51 removed chunking for the fallback implementation that reads from /dev/random, should we add it back?

Signed-off-by: Joe Richey joerichey@google.com

[josephlr]

As a data point, @briansmith's ring reads from /dev/urandom without chunking.

[newpavlov]

Finally, a question. #51 removed chunking for the fallback implementation that reads from /dev/random, should we add it back?

Isn't "chunking" handled automatically by sys_fill_exact? We have the exception for Emscripten, but I don't think we need a similar code for Solaris.

[josephlr]

Finally, a question. #51 removed chunking for the fallback implementation that reads from /dev/random, should we add it back?

Isn't "chunking" handled automatically by sys_fill_exact? We have the exception for Emscripten, but I don't think we need a similar code for Solaris.

You're correct. Looking at the Solaris documentation again, it seems like read()s from /dev/random and calls to getrandom() behave differently when they are passed buffers which are "too long". The read() call will succeed and just return fewer bytes (so using sys_fill_exact is fine), while calls to getrandom() will just fail with EINVAL.

So the implementation in this PR seems correct.