ESDM 1.2.2

ESDM Source Code

ESDM Source Code Signature

Documentation

The following documentation is available:

Changelog

  • Add TPM 2.0 entropy source

  • Reworked threading concept towards multi-connection workers for less memory usage

  • Add jitterentropy status RPC call and expose in esdm-tool

  • Kernel seeder: add systemd notify support, improve startup speed, double inserted entropy amount

  • RPC: set non-blocking sockets, add timeout to non-blocking writes, simplify per-connection buffers, improved performance

  • More robust signal handling, overflow checks and argument validation

  • RPM SPEC file fixes for openSUSE

  • add PPC DARN instruction availability check

  • fix crasher in CUSE poller thread

  • fix compilation with systemd=disabled

  • esdm-server: Fix handling of SIGUSR1 sent by suspend/resume helper (they caused the server to terminate)

  • Add backtracking resistance to internal state/output of aux pool

  • Automatically add device specific personalization string based on product uuid from DMI, when available

  • Assure 256 bit security level on all Intel CPUs

  • Fixes for esdm_es and switch to 64 bit timestamps and usage of time deltas

  • Support for Linux kernel 6.18 in esdm_es

  • Added support for NTG.1 compliant jitterentropy-library 3.7.0

  • remove minimally seeded stage

  • remove placeholder for atomic DRNG

Standards Compliance

  • SP800-90A/B/C compliant

  • AIS20/31 2011 compliant

  • AIS20/31 2024 compliant

  • FIPS IG 7.19 / D.K compliant - use of DRBG as conditioning component for chaining DRBGs