SystemRandom: Fix #326 - Prefer getrandom(2) on FreeBSD

[cemeyer]

FreeBSD added the Linux-compatible getrandom(2) API in 12.0. Like Linux,
prefer it to the /dev/urandom device, but fallback to the earlier method if
the syscall is not available.

[cemeyer]

(Of course, it builds and tests pass on FreeBSD CURRENT. Please consider this contribution licensed under the project's preferred ISC license for new code.)

[briansmith]

@Thomasdezeeuw Could you please review this? I think this may be a better solution than PR #1119.

[briansmith]

Does FreeBSD have a stable syscall ABI, or is it one of those platforms where only libc has a stable ABI?

[Thomasdezeeuw]

I could only find https://wiki.freebsd.org/Releng/ABI, which says:

We also try to maintain ABI compatibility across .0 releases, but they are not strictly enforced except for libraries that already implements versioned symbols.

Which I read as best effort, but not guaranteed.

[Thomasdezeeuw]

I'll see if I can add it to libc.

[Thomasdezeeuw]

PR for libc rust-lang/libc#1982.

[cemeyer]

It's one of those platforms where only libc has a stable ABI. The plan is to provide a stable libsystem ABI at some point in the near future for non-C programming languages, but I'm afraid we're not there yet.

[briansmith]

PR for libc rust-lang/libc#1982.

Great. It seems like we could just call getrandom directly from ring through FFI, without going through the libc crate, couldn't we? It seems like maybe we should go that route.

[cemeyer]

Sure, you could link FreeBSD libc directly in ring without using the libc crate.

[cemeyer]

Thanks for looking at this. (Or a better avenue through the libc crate — works for me either way!)

[briansmith]

Thanks for the PR. I'm planning to switch the implementation to use the getrandom crate as part of the goal of encapsulating/minimizing operating-system-specific code in ring; see draft PR #1531. I'm closing this in favor of that approach.