rsa keygen replicability
Daniel Kahn Gillmor
dkg at fifthhorseman.net
Mon Jun 13 16:43:32 CEST 2011
On 06/13/2011 08:02 AM, Niels Möller wrote:
> When one really wants repeatability, one can use the (otherwise pretty
> useless) lfib_knuth generator rather than yarrow256.
I've actually found that yarrow256 itself *is* repeatable across nettle
versions (well, 2.0 → 2.1 at least); it was just the RSA key generation
that was not repeatable.
> The generation method was replaced in nettle-2.1. From the NEWS file.
>
> * Key generation for RSA and DSA changed to use Maurer's
> algorithm to generate provably prime numbers (as usual, the
> mathematical proof does not guaranteee that the
> implementation is bug free).
ah, thanks; this explains why. Thanks for the pointer.
--dkg
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 1030 bytes
Desc: OpenPGP digital signature
URL: <http://lists.lysator.liu.se/pipermail/nettle-bugs/attachments/20110613/e1bf3586/attachment.pgp>
More information about the nettle-bugs
mailing list