openssl/doc/man7
Dr. Matthias St. Pierre 3a50a8a91a Ignore entropy from RAND_add()/RAND_seed() in FIPS mode
The functions RAND_add() and RAND_seed() provide a legacy API which
enables the application to seed the CSPRNG.

But NIST SP-800-90A clearly mandates that entropy *shall not* be provided
by the consuming application, neither for instantiation, nor for reseeding.

The provided random data will be mixed into the DRBG state as additional
data only, and no entropy will accounted for it.

Reviewed-by: Paul Dale <paul.dale@oracle.com>
(Merged from https://github.com/openssl/openssl/pull/8722)
2019-05-10 07:22:05 +02:00
..
bio.pod
crypto.pod
ct.pod Fix function names in ct(7) documentation 2018-12-19 19:00:08 +01:00
des_modes.pod
Ed25519.pod
EVP_KDF_HKDF.pod Added new EVP/KDF API. 2019-02-13 12:11:49 +01:00
EVP_KDF_PBKDF2.pod Added new EVP/KDF API. 2019-02-13 12:11:49 +01:00
EVP_KDF_SCRYPT.pod Added new EVP/KDF API. 2019-02-13 12:11:49 +01:00
EVP_KDF_SS.pod Single step kdf implementation 2019-03-19 11:03:45 +00:00
EVP_KDF_SSHKDF.pod Implement SSH KDF 2019-02-27 11:02:54 +00:00
EVP_KDF_TLS1_PRF.pod Added new EVP/KDF API. 2019-02-13 12:11:49 +01:00
EVP_MAC_BLAKE2.pod blake2: add EVP_MAC man page 2019-02-06 09:18:43 +00:00
EVP_MAC_CMAC.pod
EVP_MAC_GMAC.pod
EVP_MAC_HMAC.pod Minor doc fixes for EVP_MAC. 2018-12-23 00:32:24 +01:00
EVP_MAC_KMAC.pod
EVP_MAC_POLY1305.pod
EVP_MAC_SIPHASH.pod
evp.pod
openssl_user_macros.pod.in Indent with 4 2019-02-21 22:18:28 +01:00
openssl-core.h.pod Replumbing: Add include/openssl/core.h, initially with core types 2019-02-27 18:36:30 +01:00
ossl_store-file.pod
ossl_store.pod
passphrase-encoding.pod
RAND_DRBG.pod Ignore entropy from RAND_add()/RAND_seed() in FIPS mode 2019-05-10 07:22:05 +02:00
RAND.pod
RSA-PSS.pod
SM2.pod
ssl.pod
x509.pod
X25519.pod