Hallo,
I noticed that nss was not using the urandom device on linux to gather
entropy for the key generation. This patch fixes it.
-Andi
--- security/nss/lib/util/unix_rand.c-o Tue Jan 30 02:52:47 2001
+++ security/nss/lib/util/unix_rand.c Wed Aug 22 06:48:57 2001
@@ -730,6 +730,7 @@
char **cp;
char *randfile;
char *files[] = {
+ "/dev/urandom",
"/etc/passwd",
"/etc/utmp",
"/tmp",
@@ -878,7 +879,7 @@
if (bytes == 0) break;
RNG_RandomUpdate(buffer, bytes);
totalFileBytes += bytes;
- if (totalFileBytes > 1024*1024) break;
+ if (totalFileBytes > 32*1024) break;
}
fclose(file);
}
