From 5cb9db4c5b5604e02865e1e44a94e704bab3a4f6 Mon Sep 17 00:00:00 2001
From: Paul Bakker <p.j.bakker@polarssl.org>
Date: Sat, 10 Dec 2011 17:01:41 +0000
Subject: [PATCH]  - Seed-size now matches required entropy for key + IV

---
 include/polarssl/ctr_drbg.h | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/include/polarssl/ctr_drbg.h b/include/polarssl/ctr_drbg.h
index b2014c27b..5b20d4965 100644
--- a/include/polarssl/ctr_drbg.h
+++ b/include/polarssl/ctr_drbg.h
@@ -40,7 +40,7 @@
 #define CTR_DRBG_KEYBITS            ( CTR_DRBG_KEYSIZE * 8 )
 #define CTR_DRBG_SEEDLEN            ( CTR_DRBG_KEYSIZE + CTR_DRBG_BLOCKSIZE )
                                             /**< The seed length (counter + AES key)            */
-#define CTR_DRBG_ENTROPY_LEN        32      /**< Amount of entropy used per seed by default     */
+#define CTR_DRBG_ENTROPY_LEN        48      /**< Amount of entropy used per seed by default     */
 #define CTR_DRBG_RESEED_INTERVAL    10000   /**< Interval before reseed is performed by default */
 #define CTR_DRBG_MAX_INPUT          256     /**< Maximum number of additional input bytes       */
 #define CTR_DRBG_MAX_REQUEST        1024    /**< Maximum number of requested bytes per call     */