diff options
author | Jay Berkenbilt <ejb@ql.org> | 2013-10-05 23:36:33 +0200 |
---|---|---|
committer | Jay Berkenbilt <ejb@ql.org> | 2013-10-18 16:45:12 +0200 |
commit | 4229457068d6a28cc11b506f127a7bb650ab18c1 (patch) | |
tree | 822ce1e1eccdcc4a819a5805403b884a3e04791d /TODO | |
parent | 25687ddd71885c1b0a74d3f3f4e011fadbfd40e0 (diff) | |
download | qpdf-4229457068d6a28cc11b506f127a7bb650ab18c1.tar.zst |
Security: use a secure random number generator
If not available, give an error. The user may also configure qpdf to
use an insecure random number generator.
Diffstat (limited to 'TODO')
-rw-r--r-- | TODO | 11 |
1 files changed, 5 insertions, 6 deletions
@@ -76,12 +76,11 @@ General and replace the /Pages key of the root dictionary with the new tree. - * Improve the random number seed to make it more secure so that we - have stronger random numbers, particularly when multiple files are - generated in the same second. This code may need to be - OS-specific. Probably we should add a method in QUtil to seed with - a strong random number and call this automatically the first time - QUtil::random() is called. + * Secure random number generation could be made more efficient by + using a local static to ensure a single random device or crypt + provider as long as this can be done in a thread-safe fashion. In + the initial implementation, this is being skipped to avoid having + to add any dependencies on threading libraries. * Study what's required to support savable forms that can be saved by Adobe Reader. Does this require actually signing the document with |