30 Jan
2026
30 Jan
'26
6:46 a.m.
Daiki Ueno ueno@gnu.org writes:
I was trying to replace our own implementation of CTR_DRBG in GnuTLS[1] with the one provided by Nettle.
What is the GnuTLS usecase? I got the impression from Simon that drbg isn't very good and that use should be rather discouraged. So I'm a bit surprised TLS depends on it.
I've filed an MR for the latter[2]. Could you take a look?
The code change looks very reasonable. It needs a doc update, not sure if it also deserves any additional tests.
Regards, /Niels
--
Niels Möller. PGP key CB4962D070D77D7FCB8BA36271D8F1FF368C6677.
Internet email is subject to wholesale government surveillance.