/* SPDX-License-Identifier: Unlicense */
#include <sys/types.h>
#include <stdlib.h>

#include <libecc/external_deps/rand.h>

int
get_random(unsigned char *buf, uint16_t len)
{

        /*
         * We need random numbers even in a sandbox, so we can't use
         * /dev/urandom as the external_deps version of get_random() does on
         * FreeBSD.  arc4random_buf() is a better choice because it uses the
         * underlying getrandom(2) instead of needing to open a device handle.
         *
         * We don't have any guarantees that this won't open a device on other
         * platforms, but we also don't do any sandboxing on those platforms.
         */
        arc4random_buf(buf, len);
        return 0;
}