Menu
![]() ![]() On the Linux platform, the default maximum process ID is 32,768, resulting in a very small number of seed values being used for all PRNG operations. Instead of mixing in random data for the initial seed, the only "random" value that was used was the current process ID. Removing this code has the side effect of crippling the seeding process for the OpenSSL PRNG. ![]() You can see one such report to the OpenSSL team here. These lines were removed because they caused the Valgrind and Purify tools to produce warnings about the use of uninitialized data in any code that was linked to OpenSSL. ![]() MD_Update(&m,buf,j) /* purify complains */ ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |