Matthias St. Pierre 7998e7dc07 rand: fix seeding from a weak entropy source ... The 'rand_generate' method is not well suited for being used with weak entropy sources in the 'get_entropy' callback, because the caller needs to provide a preallocated buffer without knowing how much bytes are actually needed to collect the required entropy. Instead we use the 'rand_get_seed' and 'rand_clear_seed' methods which were exactly designed for this purpose: it's the callee who allocates and fills the buffer, and finally cleans it up again. The 'rand_get_seed' and 'rand_clear_seed' methods are currently optional for a provided random generator. We could fall back to using 'rand_generate' if those methods are not implemented. However, imo it would be better to simply make them an officially documented requirement for seed sources. Fixes #22332 Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> Reviewed-by: Richard Levitte <levitte@openssl.org> Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/22394)		2023-10-24 11:14:11 +01:00
..
crypto	rand: fix seeding from a weak entropy source	2023-10-24 11:14:11 +01:00
internal	Round up nano secs when converting OSSL_TIME to struct timeval	2023-10-20 16:33:40 +01:00
openssl	rand: add callbacks to cleanup the user entropy resp. nonce	2023-10-20 09:48:34 +01:00