projects / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 0e89b39) | patch
doc: document that prediction resistance comes with a hidden cost
authorPauli <pauli@openssl.org>
Tue, 7 Mar 2023 23:09:11 +0000 (10:09 +1100)
committerPauli <pauli@openssl.org>
Tue, 14 Mar 2023 21:09:17 +0000 (08:09 +1100)
commitd90bd3468a9a8d2af6b821be50c1034e21d782ca
tree3edae4d034dad787d11f5b7b60134d4b407a7601tree | snapshot
parent0e89b396197f75993c8d64c07b4af6aa2d97e2afcommit | diff
doc: document that prediction resistance comes with a hidden cost

In the default setup, using prediction resistance cascades to a reseeding
of all DRBGs.  The cost for this will be excessive for highly threaded
applications.

Fixes #20414

Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Matthias St. Pierre <Matthias.St.Pierre@ncp-e.com>
(Merged from https://github.com/openssl/openssl/pull/20452)
doc/man3/EVP_RAND.pod diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.