Re: why does RAND_add() take "randomness" as a "double"?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



On 5/21/19, 10:45 AM, "openssl-users on behalf of Salz, Rich via openssl-users" <openssl-users-bounces@xxxxxxxxxxx on behalf of openssl-users@xxxxxxxxxxx> wrote:

    When I overhauled the RAND mechanism, I tried to deprecate this use of floating point, 
    in favor of just a number from 0 to 100 but was voted down.

If it's a sarcasm, I'm missing the point.
    
    It *is* stupid.

In general, yes, it is.

    Luckily, on a modern system with system-provided randomness to seed the RNG, you never need this call.

Respectfully disagree. 

There are use cases when one wants to mix/add extra randomness from, e.g., an external source (that, for whatever reasons, is trusted more than what's provided by the system).
    
    
    

Attachment: smime.p7s
Description: S/MIME cryptographic signature


[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Index of Archives]     [Linux ARM Kernel]     [Linux ARM]     [Linux Omap]     [Fedora ARM]     [IETF Annouce]     [Security]     [Bugtraq]     [Linux]     [Linux OMAP]     [Linux MIPS]     [ECOS]     [Asterisk Internet PBX]     [Linux API]

  Powered by Linux