werner committed to libgcrypt/cipher
cvs@cvs.gnupg.org
cvs@cvs.gnupg.org
Sun, 10 Feb 2002 22:34:58 +0100
Date: Sunday February 10, 2002 @ 22:34
Author: werner
Update of /cvs/gnupg/libgcrypt/cipher
In directory trithemius:/tmp/cvs-serv3449
Modified Files:
ChangeLog random.c
Log Message:
* random.c (add_randomness): Xor new data into the pool and not
just copy it. This avoids any choosen input attacks which are not
serious in our setting because an outsider won't be able to mix
data in and even then we keep going with a PRNG. Thanks to Stefan
Keller for pointing this out.
* random.c (mix_pool): Carry an extra failsafe_digest buffer
around to make the function more robust.
File: ChangeLog Status: Up-to-date
File: random.c Status: Up-to-date