[openssl-users] Seeding before RSA key generation

Andres Traumann andres.traumann.01 at gmail.com
Thu Oct 4 14:49:02 UTC 2018


Hello,

In the documentation it is written: "The pseudo-random number generator 
must be seeded prior to calling RSA_generate_key_ex()".

After reading the documentation in 
https://wiki.openssl.org/index.php/Random_Numbers and investigating the 
source code, it seems that the seeding is in fact done automatically 
from /dev/random in systems that have it. Also, when examining the 
source code of apps/genrsa.c there does not seem to be any explicit 
seeding either.

Do I still need to explicitly seed before calling RSA_generate_key_ex?

Best
Andres



More information about the openssl-users mailing list