cURL / Mailing Lists / curl-library / Single Mail

curl-library

Re: better random from TLS/crypto backends!

From: Dan Fandrich <dan_at_coneharvesters.com>
Date: Wed, 30 Jul 2014 21:42:47 +0200

On Wed, Jul 30, 2014 at 12:12:12AM +0200, Daniel Stenberg wrote:
> This action is made to highlight the need for attention and to stress
> that we really can use good random, even for a few non-TLS features
> and while we have a more stupid default implemenation for when
> there's really no TLS backend that can provide one for us, we need to
> actively make that choice.

This patch also breaks the case where TLS is disabled an no TLS library
is even available. That's definitely a case where we should fall back to
an alternative PRNG.

>>> Dan
-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-library
Etiquette: http://curl.haxx.se/mail/etiquette.html
Received on 2014-07-30

This message: [ Message body ]
Next message: Daniel Stenberg: "Re: better random from TLS/crypto backends!"
Previous message: David Shaw: "Re: NSS, CURLOPT_CAINFO, and using the NSS CAs"
In reply to: Daniel Stenberg: "better random from TLS/crypto backends!"
Next in thread: Daniel Stenberg: "Re: better random from TLS/crypto backends!"
Reply: Daniel Stenberg: "Re: better random from TLS/crypto backends!"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]