On Sat, Jan 19, 2008 at 03:40:12PM -0500, Brad House wrote: >> I compiled OpenSSL (0.9.8g) with my own random number engine - in order to >> generate >> pseudo random numbers that are not based on unitialized values (if you run >> openssl >> without doing this you get infinite warnings - of course). >> >> The results are as follows >> The code that gives the error is the BN_get_flags() macro >> (see bn_div.c extract about line 190 below): >> >> Could this be highlighting a bug in OpenSSL????? > > Without actually looking into this first, I must ask if you compiled > OpenSSL with the 'PURIFY' option. That will silence valgrind > significantly.
The reason he said he used his own pseudo random number generator is actually because of the PURIFY option that he didn't turn on. I've seen them too with the option turned on and it still gave me some warnings. I didn't look at it yet. Kurt ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager [EMAIL PROTECTED]
