[openssl-commits] [openssl] OpenSSL_1_1_1-stable update

matthias.st.pierre at ncp-e.com matthias.st.pierre at ncp-e.com
Sun Oct 28 13:50:21 UTC 2018


The branch OpenSSL_1_1_1-stable has been updated
       via  a14174acc84db2348dfd8669db869c8e17e0c346 (commit)
      from  1f98527659b8290d442c4e1532452b9ba6463f1e (commit)


- Log -----------------------------------------------------------------
commit a14174acc84db2348dfd8669db869c8e17e0c346
Author: Dr. Matthias St. Pierre <Matthias.St.Pierre at ncp-e.com>
Date:   Sun Oct 28 12:38:49 2018 +0100

    Configure: Improve warning if no random seed source was configured
    
    The new Configure summary box (41349b5e6db) now hides the warning
    about the missing seed source (2805ee1e095) too much. To make it
    more visible again, add warning markers.
    
    Reviewed-by: Richard Levitte <levitte at openssl.org>
    (Merged from https://github.com/openssl/openssl/pull/7509)
    
    (cherry picked from commit caa8595276c60f009c8621ad466338d2ae39fb86)

-----------------------------------------------------------------------

Summary of changes:
 Configure | 17 +++++++++++------
 1 file changed, 11 insertions(+), 6 deletions(-)

diff --git a/Configure b/Configure
index 3f1d409..1c1fd51 100755
--- a/Configure
+++ b/Configure
@@ -1013,13 +1013,18 @@ if (scalar(@seed_sources) == 0) {
 if (scalar(grep { $_ eq 'none' } @seed_sources) > 0) {
     die "Cannot seed with none and anything else" if scalar(@seed_sources) > 1;
     warn <<_____ if scalar(@seed_sources) == 1;
-You have selected the --with-rand-seed=none option, which effectively disables
-automatic reseeding of the OpenSSL random generator. All operations depending
-on the random generator such as creating keys will not work unless the random
-generator is seeded manually by the application.
 
-Please read the 'Note on random number generation' section in the INSTALL
-instructions and the RAND_DRBG(7) manual page for more details.
+============================== WARNING ===============================
+You have selected the --with-rand-seed=none option, which effectively
+disables automatic reseeding of the OpenSSL random generator.
+All operations depending on the random generator such as creating keys
+will not work unless the random generator is seeded manually by the
+application.
+
+Please read the 'Note on random number generation' section in the
+INSTALL instructions and the RAND_DRBG(7) manual page for more details.
+============================== WARNING ===============================
+
 _____
 }
 push @{$config{openssl_other_defines}},


More information about the openssl-commits mailing list