Bug #2998: seed SecureRandom with good random - Bazaar - Guardian Project Dev (ARCHIVED SITE)

Copy

Bug #2998

seed SecureRandom with good random

Added by hans almost 4 years ago. Updated almost 4 years ago.

Status:

Closed

Start date:

02/24/2014

Priority:

Urgent

Due date:

Assignee:

hans

% Done:

Category:

Target version:

improved security/usability

Component:

Description

SecureRandom needs to be seeded from /dev/random or /dev/urandom since the default is broken:

http://android-developers.blogspot.com.au/2013/08/some-securerandom-thoughts.html

Related issues

Associated revisions

Revision 79a6ae36
Added by pd0x almost 4 years ago

Apply Google PRNG fixes on Application creation.

To address issues with the SecureRandom class being improperly seeded on
some devices¹ developers can use a Google provided "fixes" class. This
ensures SecureRandom is seeded with /dev/random and provides
cryptographically secure random numbers.

This patch addresses Bug #2998

[1]
http://android-developers.blogspot.com.au/2013/08/some-securerandom-thoughts.html

History

#1 Updated by pd0x almost 4 years ago

Status changed from New to Feedback
Assignee set to hans

Addressed with: https://github.com/binaryparadox/Kerplapp/commit/79a6ae362a4d6bd0695d12ed3687a7d6829dbff1

#2 Updated by hans almost 4 years ago

Status changed from Feedback to Closed

works for me.

Copy

Also available in: Atom PDF

Core Apps » Bazaar

Issues