rp2040: do not use GetRNG in crypto/rand - tinygo - Go compiler for small places. Microcontrollers, WebAssembly (WASM/WASI), and command-line tools. Based on LLVM.

diff options

author	Ayke van Laethem <[email protected]>	2022-09-15 11:05:56 +0200
committer	Ron Evans <[email protected]>	2022-09-16 14:48:41 +0200
commit	d3863f337d7370ef73e9de7d214ff3b8357ecf10 (patch)
tree	5e5e366fa8ab98dcc6d4b728cc784d26dda19ce4 /targets
parent	5551ec7a1ed9d59764cfdf5a73b23dc40365a6f8 (diff)
download	tinygo-d3863f337d7370ef73e9de7d214ff3b8357ecf10.tar.gz tinygo-d3863f337d7370ef73e9de7d214ff3b8357ecf10.zip

rp2040: do not use GetRNG in crypto/rand

The crypto/rand package is used for sensitive cryptographic operations. Do not use the rp2040 RNG for this purpose, because it's not strong enough for cryptography. I think it is _possible_ to make use of the RP2040 RNG to create cryptographically secure pseudo-random numbers, but it needs some entropy calculation and secure hashing (blake2s or so) to make them truly unpredictable.

Diffstat (limited to 'targets')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: