OpenBSD 4.9: IPsec stack audit

Several potential security problems have been
identified and fixed.

ARC4 based PRNG code was audited and revamped.

New explicit_bzero() kernel function was introduced to
prevent stupid compilers from optimizing