extern/encfs
1
0
Fork 0
mirror of https://github.com/vgough/encfs.git synced 2025-02-16 09:49:46 +01:00
Code Issues Packages Projects Releases Wiki Activity

remove usage of deprecated RAND_pseudo_bytes

Browse Source 
Ignore the @strongRandom in SSL_Cipher::randomize because OpenSSL does not offer a "weak" random generator
This commit is contained in:
Rogelio Domínguez Hernández 2016-10-26 12:28:19 -05:00
parent 441fa20ed6
commit b7fc9d09d9
1 changed files with 4 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
encfs/SSL_Cipher.cpp
View File

@ -488,19 +488,15 @@ static uint64_t _checksum_64(SSLKey *key, const unsigned char *data,
/**
* Write "len" bytes of random data into "buf"
*
* See "man 3 RAND_bytes" for the effect of strongRandom
* We ignore the @strongRandom parameter because OpenSSL
* does not * offer a "weak" random generator
*/
bool SSL_Cipher::randomize(unsigned char *buf, int len,
bool strongRandom) const {
bool /*strongRandom*/) const {
// to avoid warnings of uninitialized data from valgrind
memset(buf, 0, len);
int result;
if (strongRandom) {
result = RAND_bytes(buf, len);
} else {
result = RAND_pseudo_bytes(buf, len);
}
int result = RAND_bytes(buf, len);
if (result != 1) {
char errStr[120]; // specs require string at least 120 bytes long..
unsigned long errVal = 0;