tor/bug17694_strongest at c4fb7ad0348a190be8496b429aa96982f1b26917 - tor - Git with a cup of Datura seeds

nihilist/tor

mirror of https://gitlab.torproject.org/tpo/core/tor.git synced 2024-09-21 05:26:20 +02:00

Nick Mathewson 2259de0de7 Always hash crypto_strongest_rand() along with some prng

(before using it for anything besides feeding the PRNG)

Part of #17694

2015-12-08 10:54:42 -05:00

6 lines

368 B

Plaintext

Raw Blame History

   o Minor features (security):
     - Never use the system entropy output directly for anything besides
       seeding the PRNG.  When we want to generate important keys, instead
       of using system entropy directly, hash it with the PRNG stream.
       This may help resist certain attacks based on broken OS entropy
       implementations. Closes part of ticket 17694.