Replace Entropy with RAND_bytes /dev/urandom is not an approved random number generator for NIAP certification. Changing to use BoringSSL's RAND_bytes(), which is approved. Bug: 121272336 Test: Ran Keystore CTS tests against Walleye, no new test failures observed. Change-Id: I0fb87c955512074fa714c1986ce99063ab430470 Merged-In: I579d140ef56c90b477b0d8989e3b02375681aee8

commit: e489a0371ed8251bc80d0a0328767d568cb1da30 [log] [tgz]
author: Branden Archer <brarcher@google.com> Fri Dec 28 09:10:49 2018 -0800
committer: Branden Archer <brarcher@google.com> Fri Jan 11 12:35:55 2019 -0800
tree: e3fc13f5165f1e3f76b5e33bb719d2c10fe96433
parent: f8feed620bd607427ded702cce91bb0eb749bc6a [diff] [blame]
diff --git a/keystore/blob.h b/keystore/blob.h
index 665e07a..6a52ca4 100644
--- a/keystore/blob.h
+++ b/keystore/blob.h

@@ -82,7 +82,6 @@
     TYPE_KEY_CHARACTERISTICS = 5,
 } BlobType;
 
-class Entropy;
 
 class Blob {
   public:
@@ -121,8 +120,7 @@
     keystore::SecurityLevel getSecurityLevel() const;
     void setSecurityLevel(keystore::SecurityLevel);
 
-    ResponseCode writeBlob(const std::string& filename, const uint8_t* aes_key, State state,
-                           Entropy* entropy);
+    ResponseCode writeBlob(const std::string& filename, const uint8_t* aes_key, State state);
     ResponseCode readBlob(const std::string& filename, const uint8_t* aes_key, State state);
 
   private:
commit	e489a0371ed8251bc80d0a0328767d568cb1da30	[log] [tgz]
author	Branden Archer <brarcher@google.com>	Fri Dec 28 09:10:49 2018 -0800
committer	Branden Archer <brarcher@google.com>	Fri Jan 11 12:35:55 2019 -0800
tree	e3fc13f5165f1e3f76b5e33bb719d2c10fe96433
parent	f8feed620bd607427ded702cce91bb0eb749bc6a [diff] [blame]