[tor-bugs] #13696 [Tor]: Use syscall-based entropy reading where possible.
Tor Bug Tracker & Wiki
blackhole at torproject.org
Sun Nov 29 15:59:45 UTC 2015
#13696: Use syscall-based entropy reading where possible.
-------------------------+------------------------------
Reporter: nickm | Owner: yawning
Type: enhancement | Status: needs_review
Priority: Medium | Milestone: Tor: 0.2.???
Component: Tor | Version:
Severity: Normal | Resolution:
Keywords: tor-relay | Actual Points:
Parent ID: | Points:
Sponsor: |
-------------------------+------------------------------
Changes (by yawning):
* status: needs_revision => needs_review
Comment:
Replying to [comment:14 teor]:
> I'm still ok with implementing the call to SecRandomCopyBytes on OS X /
iOS, because it has better semantics (lower failure rate).
This sounds reasonable. The non-Dual EC DRBG constructs in SP 800-90 are
secure as far as I know. You say it uses ECB, but that's just because
they're implementing CTR mode right?
I'm comfortable with the branch the way it is, but it's probably best if
nickm gives further feedback regarding the things from the review that I
didn't want to change.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/13696#comment:15>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list