mbedtls/ChangeLog.d/mpi_fill_random-rng_failure.txt

Security
   * A failure of the random generator was ignored in mbedtls_mpi_fill_random(),
     which is how most uses of randomization in asymmetric cryptography
     (including key generation, intermediate value randomization and blinding)
     are implemented. This could cause failures or the silent use of non-random
     values. A random generator can fail if it needs reseeding and cannot not
     obtain entropy, or due to an internal failure (which, for Mbed TLS's own
     CTR_DRBG or HMAC_DRBG, can only happen due to a misconfiguration).
Handle random generator failure in mbedtls_mpi_fill_random() Discuss the impact in a changelog entry. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com> 2020-11-25 16:15:14 +01:00			`Security`
			`* A failure of the random generator was ignored in mbedtls_mpi_fill_random(),`
			`which is how most uses of randomization in asymmetric cryptography`
			`(including key generation, intermediate value randomization and blinding)`
			`are implemented. This could cause failures or the silent use of non-random`
			`values. A random generator can fail if it needs reseeding and cannot not`
			`obtain entropy, or due to an internal failure (which, for Mbed TLS's own`
			`CTR_DRBG or HMAC_DRBG, can only happen due to a misconfiguration).`