On 8/16/19 5:26 AM, Chitrang Srivastava wrote:
Hi,
I am working on an embedded platform and now ported openssl 1.1.1b
TLS 1.2/1.3 is working fine.
While analysing random number , Rand pool initialization calls where I
am returning like this ,
size_t *rand_pool_acquire_entropy*(RAND_POOL *pool)
{
return rand_pool_entropy_available(pool);
}
As noticed that *rand_unix.c* has an implementation wcih samples 2
bits of RTC, would that give enough entropy or any other
recommendation to have enough entropy for embedded platforms?
Check out: https://issihosts.com/haveged
I talk about it here:
http://www.htt-consult.com/CentOS7-armv7.html#RANDOMNESS