[Pkg-openssl-devel] Bug#88728: Bug#88728: openssl: fixed ages ago in 0.9.7
Kurt Roeckx
kurt at roeckx.be
Sat Mar 15 16:58:24 UTC 2008
On Wed, Mar 12, 2008 at 09:04:54PM +0000, Jason Cormie wrote:
> Package: openssl
> Followup-For: Bug #88728
>
>
> in the openssl changelog it says that 0.9.7 had the ability to try
> /dev/random if it didnt find /dev/urandom
>
> http://www.openssl.org/news/changelog.html
>
> *) Change the Unix RAND_poll() variant to be able to poll several
> random devices, as specified by DEVRANDOM, until a sufficient
> amount of data has been collected. We spend at most 10 ms on each
> file (select timeout) and read in non-blocking mode.
> DEVRANDOM now defaults to the list "/dev/urandom", "/dev/random",
> "/dev/srandom" (previously it was just the string "/dev/urandom"), so on typical
> platforms the 10 ms delay will never occur.
>
> I assume this means the bug can be closed
I don't agree. DEVRANDOM is a compile time option. This is something
you'd want to override in the application or maybe some environment
variable.
Kurt
More information about the Pkg-openssl-devel
mailing list