]> git.ipfire.org Git - thirdparty/curl.git/commit
projects / thirdparty / curl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 6d9b40d) | patch
vtls/rustls: support strong CSRNG data
authorDaniel McCarney <daniel@binaryparadox.net>
Thu, 12 Sep 2024 16:38:51 +0000 (12:38 -0400)
committerDaniel Stenberg <daniel@haxx.se>
Fri, 13 Sep 2024 12:11:56 +0000 (14:11 +0200)
commit89728451234ae39a001098157d43633d7eb3f3db
treecb810b68768e041faeaf538e37d34c8bdb234bcctree
parent6d9b40d6a4e17a84d92579c5d415dbc006b5ea19commit | diff
vtls/rustls: support strong CSRNG data

Now that the curl rustls vtls backend is using rustls 0.14 we can
address the weak random situation by using
`rustls_default_crypto_provider_random()` to provide a `Curl_ssl`
`random` callback that fills the provided buffer with cryptographically
secure random data.

The mentions in `docs/` about weak RNG when using rustls are removed as
they are no longer applicable.

Closes #14889
docs/EXPERIMENTAL.md diff | blob | blame | history
docs/RUSTLS.md diff | blob | blame | history
lib/rand.c diff | blob | blame | history
lib/rand.h diff | blob | blame | history
lib/vtls/rustls.c diff | blob | blame | history
Mirror of https://github.com/curl/curl.git