User: Password:
|
|
Subscribe / Log in / New account

Debian vulnerability has widespread effects

Debian vulnerability has widespread effects

Posted May 15, 2008 6:32 UTC (Thu) by cpeterso (guest, #305)
Parent article: Debian vulnerability has widespread effects

Why does OpenSSL have its own PRNG anyways? Shouldn't it rely on the underlying operating
system's secure RNG (for those that have one, which includes Debian)?


(Log in to post comments)

Debian vulnerability has widespread effects

Posted May 15, 2008 8:56 UTC (Thu) by IkeTo (subscriber, #2122) [Link]

> Shouldn't it rely on the underlying operating
> system's secure RNG (for those that have one, which includes Debian)?


It does (see crypto/rand/rand_unix.c in openssl source code).  But there gotta be some way in
which the random bytes obtained via various system-dependent methods to be put into one
coherent interface so that the remaining system independent code can use them.


Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds