diff options
Diffstat (limited to 'doc/man7/RAND_DRBG.pod')
| -rw-r--r-- | doc/man7/RAND_DRBG.pod | 7 |
1 files changed, 7 insertions, 0 deletions
diff --git a/doc/man7/RAND_DRBG.pod b/doc/man7/RAND_DRBG.pod index 48d4ace09c..621f6ded5a 100644 --- a/doc/man7/RAND_DRBG.pod +++ b/doc/man7/RAND_DRBG.pod @@ -264,6 +264,13 @@ from the trusted entropy sources. =back +NOTE: Manual reseeding is *not allowed* in FIPS mode, because +NIST SP-800-90A mandates that entropy *shall not* be provided by the +consuming application, neither for instantiation, nor for reseeding. +[NIST SP 800-90Ar1, Sections 9.1 and 9.2]. For that reason the B<randomness> +argument is ignored and the random bytes provided by the L<RAND_add(3)> and +L<RAND_seed(3)> calls are treated as additional data. + =head2 Reseeding the master DRBG with automatic seeding disabled Calling RAND_poll() will always fail. |