> No, this seems like a worse cure then the cause... Can you elaborate? It cures the problem of the socket module not being loadable... > Why not put the whole if (RAND_status()) thing under the ifdef? It > was only added in 2.1, so at least we would be no worse off then in > 2.0 AFAICT, under my patch, when using OpenSSL on a system with EGD, it will do the right thing. On a system with /dev/random, it will produce a runtime warning, then add insecure entropy - in addition to the secure entropy already obtained from /dev/random. Under what I think is your patch, it will do the right thing on a system with /dev/random. On a system with EGD, it will fail because of the missing entropy. Regards, Martin
RetroSearch is an open source project built by @garambo | Open a GitHub Issue
Search and Browse the WWW like it's 1997 | Search results from DuckDuckGo
HTML:
3.2
| Encoding:
UTF-8
| Version:
0.7.4