doc: add a note on PRNG weakness

Adds a note on the software PRNG weakness in the porting guidelines. Acked-by: Etienne Carriere <etienne.carriere@linaro.org> Signed-off-by: Jens Wiklander <jens.wiklander@linaro.org>
author: Jens Wiklander <jens.wiklander@linaro.org> 2018-03-28 11:26:54 +0200
committer: Jérôme Forissier <jerome.forissier@linaro.org> 2018-03-29 22:57:23 +0800
commit: 21b948d229bbf5c6efe71a28f9e565f2ff11d7e3 (patch)
tree: 9893b4634480eb94109d8b154aeb0a4eb8cc9ed7 /documentation
parent: ad22421a6641cf2118de682d1676f81d83538b7e (diff)
1 files changed, 5 insertions, 0 deletions
diff --git a/documentation/porting_guidelines.md b/documentation/porting_guidelines.md
index 01ccb728..27710bb0 100644
--- a/documentation/porting_guidelines.md
+++ b/documentation/porting_guidelines.md
@@ -286,6 +286,11 @@ you have, we have not written how that should be done. It might be that we
 do that in the future when get hold of a device where we can use the crypto
 block.
 
+By default OP-TEE is configured with a software PRNG. The entropy is added
+to software PRNG at various places, but unfortunately it is still quite
+easy to predict the data added as entropy. As a consequence, unless the RNG
+is based on hardware the generated random will be quite weak.
+
 ## 7. Power Management / PSCI
 In section 2 when we talked about the file `main.c`, we added a couple of
 handlers related to power management, we are talking about the following lines:
author	Jens Wiklander <jens.wiklander@linaro.org>	2018-03-28 11:26:54 +0200
committer	Jérôme Forissier <jerome.forissier@linaro.org>	2018-03-29 22:57:23 +0800
commit	21b948d229bbf5c6efe71a28f9e565f2ff11d7e3 (patch)
tree	9893b4634480eb94109d8b154aeb0a4eb8cc9ed7 /documentation
parent	ad22421a6641cf2118de682d1676f81d83538b7e (diff)