From 03bfb228ffd95c37e135bb9a5a37160c247e28a9 Mon Sep 17 00:00:00 2001 From: james Date: Tue, 18 Nov 2008 01:25:05 +0000 Subject: Added --prng option to control PRNG (pseudo-random number generator) parameters. In previous OpenVPN versions, the PRNG was hardcoded to use the SHA1 hash. Now any OpenSSL hash may be used. This is part of an effort to remove hardcoded references to a specific cipher or cryptographic hash algorithm. git-svn-id: http://svn.openvpn.net/projects/openvpn/branches/BETA21/openvpn@3503 e7ae566f-a301-0410-adde-c780ea21d3b5 --- crypto.h | 5 ++++- 1 file changed, 4 insertions(+), 1 deletion(-) (limited to 'crypto.h') diff --git a/crypto.h b/crypto.h index 448e8ad..9a677d0 100644 --- a/crypto.h +++ b/crypto.h @@ -329,8 +329,11 @@ void crypto_adjust_frame_parameters(struct frame *frame, bool packet_id, bool packet_id_long_form); -void prng_init (void); +#define NONCE_SECRET_LEN_MIN 16 +#define NONCE_SECRET_LEN_MAX 64 +void prng_init (const char *md_name, const int nonce_secret_len_parm); void prng_bytes (uint8_t *output, int len); +void prng_uninit (); void test_crypto (const struct crypto_options *co, struct frame* f); -- cgit v1.2.3