]> git.ipfire.org Git - thirdparty/openssl.git/commit
projects / thirdparty / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 5173cdd) | patch
Add prediction resistance capability to the DRBG reseeding process.
authorPauli <paul.dale@oracle.com>
Fri, 12 Apr 2019 08:16:20 +0000 (18:16 +1000)
committerPauli <paul.dale@oracle.com>
Fri, 12 Apr 2019 08:16:20 +0000 (18:16 +1000)
commit65175163247fe0f56c894c9ac7baf93f4386cebe
tree9d3553c9b3b25f3a458f7d6e8b181c6ec43ae1d4tree | snapshot
parent5173cdde7d758824e6a07f2a6c6808b254602e11commit | diff
Add prediction resistance capability to the DRBG reseeding process.

Refer to NIST SP 800-90C section 5.4 "Prediction Resistance.l"

This requires the seed sources to be approved as entropy sources, after
which they should be considered live sources as per section 5.3.2 "Live
Entropy Source Availability."

Reviewed-by: Matthias St. Pierre <Matthias.St.Pierre@ncp-e.com>
(Merged from https://github.com/openssl/openssl/pull/8647)
CHANGES diff | blob | blame | history
crypto/rand/rand_lib.c diff | blob | blame | history
doc/man3/RAND_DRBG_generate.pod diff | blob | blame | history
doc/man3/RAND_DRBG_reseed.pod diff | blob | blame | history
doc/man3/RAND_DRBG_set_callbacks.pod diff | blob | blame | history
doc/man7/RAND_DRBG.pod diff | blob | blame | history
test/drbgtest.c diff | blob | blame | history
A mirror of the official openssl repository