rsa keygen replicability
Daniel Kahn Gillmor
dkg at fifthhorseman.net
Mon Jun 13 16:43:32 CEST 2011
On 06/13/2011 08:02 AM, Niels Möller wrote:
> When one really wants repeatability, one can use the (otherwise pretty
> useless) lfib_knuth generator rather than yarrow256.
I've actually found that yarrow256 itself *is* repeatable across nettle
versions (well, 2.0 → 2.1 at least); it was just the RSA key generation
that was not repeatable.
> The generation method was replaced in nettle-2.1. From the NEWS file.
> * Key generation for RSA and DSA changed to use Maurer's
> algorithm to generate provably prime numbers (as usual, the
> mathematical proof does not guaranteee that the
> implementation is bug free).
ah, thanks; this explains why. Thanks for the pointer.
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 1030 bytes
Desc: OpenPGP digital signature
More information about the nettle-bugs