From 11570f6201548b957b70e8b93e954538f01d09c7 Mon Sep 17 00:00:00 2001 From: Linus Nordberg Date: Wed, 18 Dec 2013 20:37:44 +0100 Subject: Improve initialisation of OpenSSL PRNG. Basic idea taken from Tor. --- lib/radsecproxy/tlscommon.c | 15 --------------- 1 file changed, 15 deletions(-) (limited to 'lib/radsecproxy/tlscommon.c') diff --git a/lib/radsecproxy/tlscommon.c b/lib/radsecproxy/tlscommon.c index 002788d..e7b53bf 100644 --- a/lib/radsecproxy/tlscommon.c +++ b/lib/radsecproxy/tlscommon.c @@ -39,21 +39,6 @@ static struct hash *tlsconfs = NULL; -void ssl_init(void) { - time_t t; - pid_t pid; - - SSL_load_error_strings(); - SSL_library_init(); - - while (!RAND_status()) { - t = time(NULL); - pid = getpid(); - RAND_seed((unsigned char *)&t, sizeof(time_t)); - RAND_seed((unsigned char *)&pid, sizeof(pid)); - } -} - static int pem_passwd_cb(char *buf, int size, int rwflag, void *userdata) { int pwdlen = strlen(userdata); if (rwflag != 0 || pwdlen > size) /* not for decryption or too large */ -- cgit v1.1