Re: SSL RAND entropy init takes 30-60 depending on implementation
Date: Mon, 14 Jun 2004 09:05:22 -0600
Daniel Stenberg wrote:
>On Thu, 10 Jun 2004, listman wrote:
>>I would recommend replacing the RAND_screen call with a call to
>>RAND_bytes( &c, 1 );
>I checked the man pages. RAND_bytes() only works with an already seeded PRNG.
>I fail to see how it can be used to seed it then!
The openssl RAND_bytes implemenation seeds the PRNG if it has not been
previously seeded by calling RAND_poll to seed it.
I've looked at and steped through the code.
However the gvanem_at_broadpark.no solution seems the best,
Thanks for the feedback
Received on 2004-06-14