[openssl-users] Doubt about OpenSSL library initialization in an HTTP client application
silvioprog
silvioprog at gmail.com
Mon Dec 12 18:33:34 UTC 2016
On Mon, Dec 12, 2016 at 3:28 PM, Salz, Rich <rsalz at akamai.com> wrote:
> > > You fed RAND_bytes output back into RAND_add? That's silly.
> > Yes. Is it unnecessary? My steps are:
>
> It is a bad idea. It is pointless. Don't do it.
So what is the correct way, 1 or 2?
1)
RAND_poll()
/* RAND_bytes is unnecessary */
/* RAND_add is unnecessary */
2)
RAND_poll()
RAND_bytes(buf, 128);
/* RAND_add is unnecessary */
:-S
--
Silvio Clécio
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mta.openssl.org/pipermail/openssl-users/attachments/20161212/2a763b1a/attachment.html>
More information about the openssl-users
mailing list