On Thu, May 15, 2008 at 06:17:03PM -0400, Geoff Thorpe wrote: > On Thursday 15 May 2008 17:31:45 Erik de Castro Lopo wrote: > > Geoff Thorpe wrote: > > > Then tell your linux distribution to use -DPURIFY. > > > > Hangon, I've got a better idea. How about the OpenSSL develoeprs > > fix their library so that the standard version that they ship is > > valgrind clean. Then the distributions won't need to do anything > > other than compile it. > > What, you mean like how the standard version we ship has a good PRNG, so that > the distributions don't need to do anything about that either? Funny, that > doesn't work so well in the real world.
I do have to question whether mixing in predictable data from the stack at RNG initialization time is such a great idea. Thor ______________________________________________________________________ OpenSSL Project http://www.openssl.org Development Mailing List openssl-dev@openssl.org Automated List Manager [EMAIL PROTECTED]
