[openssl-dev] Plea for a new public OpenSSL RNG API
Salz, Rich
rsalz at akamai.com
Tue Aug 29 16:44:36 UTC 2017
➢ An other problem with the current implemenation is that the
➢ randomness parameter that's now given to RAND_add() is just
➢ ignored, it assumes it's the same as the length.
For what it’s worth, this was done deliberately, make RAND_add and RAND_seed equivalent.
I am skeptical of the ability to get that estimate correct.
Someone on GH there is a conversation thread about turning that into a percentage, which seems like the best thing to do for any new API.
More information about the openssl-dev
mailing list