Hello, Attached is an alternative pseudo-random number generator for OpenSSL, based upon the FIPS186-2 specification. Tested on x86 and PPC, linux-elf. Hope you find it useful.
Yair --- diff -urN openssl-0.9.8-stable-SNAP-20080112/crypto/rand/Makefile openssl-0.9.8-stable-SNAP-devel/crypto/rand/Makefile --- openssl-0.9.8-stable-SNAP-20080112/crypto/rand/Makefile 2006-02-04 04:06:21.000000000 +0200 +++ openssl-0.9.8-stable-SNAP-devel/crypto/rand/Makefile 2008-01-15 11:29:47.000000000 +0200 @@ -18,9 +18,9 @@ LIB=$(TOP)/libcrypto.a LIBSRC=md_rand.c randfile.c rand_lib.c rand_err.c rand_egd.c \ - rand_win.c rand_unix.c rand_os2.c rand_nw.c + rand_win.c rand_unix.c rand_os2.c rand_nw.c rand_fips186.c LIBOBJ=md_rand.o randfile.o rand_lib.o rand_err.o rand_egd.o \ - rand_win.o rand_unix.o rand_os2.o rand_nw.o + rand_win.o rand_unix.o rand_os2.o rand_nw.o rand_fips186.o SRC= $(LIBSRC) diff -urN openssl-0.9.8-stable-SNAP-20080112/crypto/rand/rand_fips186.c openssl-0.9.8-stable-SNAP-devel/crypto/rand/rand_fips186.c --- openssl-0.9.8-stable-SNAP-20080112/crypto/rand/rand_fips186.c 1970-01-01 02:00:00.000000000 +0200 +++ openssl-0.9.8-stable-SNAP-devel/crypto/rand/rand_fips186.c 2008-01-15 11:36:04.000000000 +0200 @@ -0,0 +1,253 @@ +/* FIPS 186-2 random number generator + * by Yair Elharrar, Jan 2008 + * + * Adapted from FIPS186-2 at http://csrc.nist.gov/publications/fips/fips186-2/fips186-2-change1.pdf + * + * Usage: RAND_set_rand_method(RAND_FIPS186()), followed by RAND_cleanup() ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager [EMAIL PROTECTED]