[Bug crypto/38417] gnu.java.security.util.PRNG produces easily predictab

bug-classpath

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Bug crypto/38417] gnu.java.security.util.PRNG produces easily predictab

From:	gnu_andrew at member dot fsf dot org
Subject:	[Bug crypto/38417] gnu.java.security.util.PRNG produces easily predictable values
Date:	3 Feb 2009 21:16:24 -0000


------- Comment #11 from gnu_andrew at member dot fsf dot org  2009-02-03 21:16 
-------
CVSROOT:        /sources/classpath
Module name:    classpath
Changes by:     Andrew John Hughes <gnu_andrew> 09/02/03 21:02:59

Modified files:
       .              : ChangeLog
       gnu/java/security/jce/prng: SecureRandomAdapter.java
       gnu/javax/crypto/jce/prng: ARCFourRandomSpi.java CSPRNGSpi.java
                                  FortunaImpl.java ICMRandomSpi.java
                                  UMacRandomSpi.java
       gnu/javax/crypto/prng: ICMGenerator.java

Log message:
       2009-01-22  Mario Torre  <address@hidden>

               PR classpath/38417:
               * gnu/java/security/jce/prng/SecureRandomAdapter.java:
               (getSeed(int)): New; retrieve seed from source specified
               by securerandom.source property or failing that, use
               VMSecureRandom.
               * gnu/javax/crypto/jce/prng/ARCFourRandomSpi.java:
               (engineGenerateSeed(int)): Use SecureRandomAdapter.
               (engineNextBytes(byte[])): Initialise using new seed.
               * gnu/javax/crypto/jce/prng/CSPRNGSpi.java:
               (engineGenerateSeed(int)): Use SecureRandomAdapter.
               (engineNextBytes(byte[])): Initialise using new seed.
               * gnu/javax/crypto/jce/prng/FortunaImpl.java:
               (engineSetSeed(byte[])): Initialise with new seed if unused.
               (engineGenerateSeed(int)): Use SecureRandomAdapter.
               * gnu/javax/crypto/jce/prng/ICMRandomSpi.java:
               (engineGenerateSeed(int)): Use SecureRandomAdapter.
               (engineNextBytes(byte[])): Initialise using new seed.
               * gnu/javax/crypto/jce/prng/UMacRandomSpi.java:
               (engineGenerateSeed(int)): Use SecureRandomAdapter.
               (engineNextBytes(byte[])): Initialise using new seed.
               * gnu/javax/crypto/prng/ICMGenerator.java:
               (setup(Map)): Call fillBlock().

Can someone confirm this fixes the issue?


-- 

gnu_andrew at member dot fsf dot org changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|ASSIGNED                    |WAITING


http://gcc.gnu.org/bugzilla/show_bug.cgi?id=38417

[Prev in Thread]

Current Thread

[Next in Thread]

[Bug crypto/38417] gnu.java.security.util.PRNG produces easily predictable values, gnu_andrew at member dot fsf dot org <=
- [Bug crypto/38417] gnu.java.security.util.PRNG produces easily predictable values, lloyd at randombit dot net, 2009/02/03
- [Bug crypto/38417] gnu.java.security.util.PRNG produces easily predictable values, gnu_andrew at member dot fsf dot org, 2009/02/09
- [Bug crypto/38417] gnu.java.security.util.PRNG produces easily predictable values, gnu_andrew at member dot fsf dot org, 2009/02/10
- [Bug crypto/38417] gnu.java.security.util.PRNG produces easily predictable values, gnu_andrew at member dot fsf dot org, 2009/02/13

Next by Date: [Bug crypto/38417] gnu.java.security.util.PRNG produces easily predictable values
Next by thread: [Bug crypto/38417] gnu.java.security.util.PRNG produces easily predictable values
Index(es):
- Date
- Thread