summaryrefslogtreecommitdiffstats
path: root/NetworkPkg/UefiPxeBcDxe/PxeBcDhcp4.c
diff options
context:
space:
mode:
authorFlickdm <douglas.flick@microsoft.com>2024-05-20 11:07:38 -0700
committermergify[bot] <37929162+mergify[bot]@users.noreply.github.com>2024-05-24 15:48:52 +0000
commita85336531cf56e4bb04cf61ec3991a8104320dc4 (patch)
treea388a1f22fa5ecb891a0afa90a14e95940a91409 /NetworkPkg/UefiPxeBcDxe/PxeBcDhcp4.c
parente10d83234c7e3caaf940df79f4b302fca3729fb0 (diff)
downloadedk2-a85336531cf56e4bb04cf61ec3991a8104320dc4.tar.gz
edk2-a85336531cf56e4bb04cf61ec3991a8104320dc4.tar.bz2
edk2-a85336531cf56e4bb04cf61ec3991a8104320dc4.zip
SecurityPkg RngDxe: Remove incorrect limitation on GetRng
Removed from gEfiRngAlgorithmRaw an incorrect assumption that Raw cannot return less than 256 bits. The DRNG Algorithms should always use a 256 bit seed as per nist standards however a caller is free to request less than 256 bits. > > // > // When a DRBG is used on the output of a entropy source, > // its security level must be at least 256 bits according to UEFI Spec. > // > if (RNGValueLength < 32) { > return EFI_INVALID_PARAMETER; > } > AARCH64 platforms do not have this limitation and this brings both implementations into alignment with each other and the spec. Cc: Jiewen Yao <jiewen.yao@intel.com> Signed-off-by: Doug Flick [MSFT] <doug.edk2@gmail.com> Reviewed-by: Ard Biesheuvel <ardb@kernel.org> Reviewed-by: Pierre Gondois <pierre.gondois@arm.com> Acked-by: Jiewe Yao <Jiewen.yao@intel.com>
Diffstat (limited to 'NetworkPkg/UefiPxeBcDxe/PxeBcDhcp4.c')
0 files changed, 0 insertions, 0 deletions