From 900fdcf029c03dd91fa518801dd0876c04ab8202 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Dominik=20Sch=C3=BCrmann?= <dominik@dominikschuermann.de>
Date: Sun, 15 Sep 2013 22:31:52 +0200
Subject: More docs on rng issues

---
 .../src/org/sufficientlysecure/keychain/util/PRNGFixes.java          | 5 +++++
 1 file changed, 5 insertions(+)

(limited to 'OpenPGP-Keychain/src/org/sufficientlysecure/keychain')

diff --git a/OpenPGP-Keychain/src/org/sufficientlysecure/keychain/util/PRNGFixes.java b/OpenPGP-Keychain/src/org/sufficientlysecure/keychain/util/PRNGFixes.java
index c24023e48..a7919e5e3 100644
--- a/OpenPGP-Keychain/src/org/sufficientlysecure/keychain/util/PRNGFixes.java
+++ b/OpenPGP-Keychain/src/org/sufficientlysecure/keychain/util/PRNGFixes.java
@@ -35,6 +35,11 @@ import java.security.Security;
  * copied from http://android-developers.blogspot.de/2013/08/some-securerandom-thoughts.html
  * 
  * 
+ * More information on these Android bugs:
+ * http://blog.k3170makan.com/2013/08/more-details-on-android-jca-prng-flaw.html
+ * Paper: "Randomly failed! Weaknesses in Java Pseudo Random Number Generators (PRNGs)"
+ * 
+ * 
  * Sep 15, 2013:
  * On some devices /dev/urandom is non-writable!
  * No need to seed /dev/urandom. urandom should have enough seeds from the OS and kernel.
-- 
cgit v1.2.3