Pablo J. Royo <[EMAIL PROTECTED]>:
> When I had the same problem in Win95 with PKCS7 routines I put:
>
> static const char rnd_seed[ ] = "string to make the random number generator
> think it has entropy";
>
> as a global variable, then called
>
> RAND_seed(rnd_seed, sizeof rnd_seed);
>
> just after my OpenSSL_add_all_algorithms() routine, and it worked.
> I have seen this in ssltest.c example
Obviously, you can't do this in production code. For ssltest we don't
care if the PRNG isn't unpredictable, but if you want secure encryption,
then you need secure random numbers. So if you add a fixed seed
to be able to test initial versions of the program, you have to make
very sure that you replace this by really random seedings as soon
as possible.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
