Previously random_integer and friends used the global PRNG object to get

random bits. Now they take a reference to a RandomNumberGenerator object. This was applied several times out, so now the constructors to private key objects also take a RandomNumberGenerator& argument. This is also true for a number of randomized algorithms (Miller-Rabin, for instance). You can get a reference to the global PRNG with global_state().prng_reference() This is a provisional thing: and warning: it is not thread safe! If this is a problem instead keep per-thread PRNGs and pass them were needed.
author: lloyd <[email protected]> 2008-05-24 18:25:00 +0000
committer: lloyd <[email protected]> 2008-05-24 18:25:00 +0000
commit: b7563677f13adb8dfa5813ef91ed79364b2d984d (patch)
tree: cf7fabb3eb43bc49333be726c15ecac1a7f9a1a7 /src/x509_ca.cpp
parent: a6a9110d02925e111cff2dc1143a09a3b7680f0b (diff)
1 files changed, 5 insertions, 1 deletions
diff --git a/src/x509_ca.cpp b/src/x509_ca.cpp
index 13e1520a1..602649930 100644
--- a/src/x509_ca.cpp
+++ b/src/x509_ca.cpp
@@ -91,13 +91,17 @@ X509_Certificate X509_CA::make_cert(PK_Signer* signer,
    const u32bit X509_CERT_VERSION = 3;
    const u32bit SERIAL_BITS = 128;
 
+   BigInt serial_no = random_integer(global_state().prng_reference(),
+                                     SERIAL_BITS);
+
    DataSource_Memory source(X509_Object::make_signed(signer, sig_algo,
          DER_Encoder().start_cons(SEQUENCE)
             .start_explicit(0)
                .encode(X509_CERT_VERSION-1)
             .end_explicit()
 
-            .encode(random_integer(SERIAL_BITS))
+            .encode(serial_no)
+
             .encode(sig_algo)
             .encode(issuer_dn)
author	lloyd <[email protected]>	2008-05-24 18:25:00 +0000
committer	lloyd <[email protected]>	2008-05-24 18:25:00 +0000
commit	b7563677f13adb8dfa5813ef91ed79364b2d984d (patch)
tree	cf7fabb3eb43bc49333be726c15ecac1a7f9a1a7 /src/x509_ca.cpp
parent	a6a9110d02925e111cff2dc1143a09a3b7680f0b (diff)