017fd8656a2e961a9d49f63a69fb552bfc9bdd96 - trusty/lib

commit	017fd8656a2e961a9d49f63a69fb552bfc9bdd96	[log] [tgz]
author	Stephen Crane <cranes@google.com>	Fri Jul 23 17:25:41 2021 -0700
committer	Stephen Crane <cranes@google.com>	Fri Jul 23 17:34:13 2021 -0700
tree	a377db0f36a4b72f8d26311932f05bb616b54618
parent	3a876a2bb69219d245c6e96d8ea2583fc4b34b04 [diff]

[rng] Replace trusty_rng_secure_rand with the BoringSSL RNG

Replaces the Trusty RNG library with the BoringSSL RNG by forwarding the
existing API to BoringSSL. The add_entropy() API does not add entropy
directly to the BoringSSL RNG entropy pool, but instead adds entropy to
an internal system RNG that BoringSSL uses as a source of additional
randomness.

Concretely, this change forwards the trusty_rng_secure_rand API directly
to BoringSSL and exposes the prior functionality as an internal API just
for BoringSSL to provide fast system randomness.

Test: build.py
Bug: 193674299
Change-Id: I82fabe2e0ad7c3b5cbc92354fb4f436f2afbda0c

lib/openssl-stubs/rand.c[diff]
lib/rng/include/lib/rng/trusty_rng_internal.h[Added - diff]
lib/rng/trusty_rng.c[diff]

3 files changed

tree: a377db0f36a4b72f8d26311932f05bb616b54618

app/
include/
interface/
lib/
make/
tools/
.clang-format
.gitignore
build-config-usertests
PREUPLOAD.cfg
usertests-inc.mk