From: Bodo Möller <bodo@openssl.org>
Date: Mon, 24 Jan 2000 09:32:20 +0000 (+0000)
Subject: RAND_pseudo_bytes is good enough for encryption IVs,
X-Git-Tag: OpenSSL_0_9_5beta1~200
X-Git-Url: https://git.librecmc.org/?a=commitdiff_plain;h=f13b93d3b46d5fa0a2b0c4ec9854a3962a73d198;p=oweals%2Fopenssl.git

RAND_pseudo_bytes is good enough for encryption IVs,
we should not need RAND_bytes (and we cannot use the latter
unless we load a seed file)
---

diff --git a/apps/enc.c b/apps/enc.c
index 6c93e1722d..842036697c 100644
--- a/apps/enc.c
+++ b/apps/enc.c
@@ -448,11 +448,8 @@ bad:
 								"invalid hex salt value\n");
 							goto end;
 						}
-					} else if (RAND_bytes(salt, PKCS5_SALT_LEN) <= 0) {
-						BIO_printf(bio_err,
-							"prng not seeded\n");
+					} else if (RAND_pseudo_bytes(salt, PKCS5_SALT_LEN) <= 0)
 						goto end;
-					}
 					/* If -P option then don't bother writing */
 					if((printkey != 2)
 					   && (BIO_write(wbio,magic,