For comparison, openbsd is/was similar. malloc would protect its free list with a cookie from arc4random, but it was called very early, likely before there was any randomness to return. Starting with 5.5, the boot loader seeds the random system, so it provides strong random values immediately.
For comparison, openbsd is/was similar. malloc would protect its free list with a cookie from arc4random, but it was called very early, likely before there was any randomness to return. Starting with 5.5, the boot loader seeds the random system, so it provides strong random values immediately.