Clarify use of EGD for HPNS in rand/rand_egd.c comments.

Signed-off-by: Randall S. Becker <randall.becker@nexbridge.ca> Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Paul Dale <pauli@openssl.org> (Merged from https://github.com/openssl/openssl/pull/18565)
author: Randall S. Becker <randall.becker@nexbridge.ca> 2022-06-14 06:10:53 -0400
committer: Pauli <pauli@openssl.org> 2022-06-17 09:29:09 +1000
commit: 9e86b3815719d29f7bde2294403f97c42ce82a16 (patch)
tree: 3315d19db80c3753071b2e84b53575999d7a2073 /crypto/rand
parent: 8b738f38514d864496357f69b66ac90a458c4cda (diff)
1 files changed, 6 insertions, 4 deletions
diff --git a/crypto/rand/rand_egd.c b/crypto/rand/rand_egd.c
index c0038d71ef..762c56ded4 100644
--- a/crypto/rand/rand_egd.c
+++ b/crypto/rand/rand_egd.c
@@ -54,15 +54,17 @@ struct sockaddr_un {
 /*
  * HPNS:
  *
- *  Our current MQ 5.3 EGD requies compatability-mode sockets
- *  This code forces the mode to compatibility if required
- *  and then restores the mode.
+ *  This code forces the use of compatibility mode if required on HPE NonStop
+ *  when coreutils PRNGD is used and then restores the previous mode
+ *  after establishing the socket. This is not required on x86 where hardware
+ *  randomization should be used instead of EGD available as of OpenSSL 3.0.
+ *  Use --with-rand-seed=rdcpu when configuring x86 with 3.0 and above.
  *
  *  Needs review:
  *
  *  The better long-term solution is to either run two EGD's each in one of
  *  the two modes or revise the EGD code to listen on two different sockets
- *  (each in one of the two modes).
+ *  (each in one of the two modes) or use the hardware randomizer.
  */
 _variable
 int hpns_socket(int family,
author	Randall S. Becker <randall.becker@nexbridge.ca>	2022-06-14 06:10:53 -0400
committer	Pauli <pauli@openssl.org>	2022-06-17 09:29:09 +1000
commit	9e86b3815719d29f7bde2294403f97c42ce82a16 (patch)
tree	3315d19db80c3753071b2e84b53575999d7a2073 /crypto/rand
parent	8b738f38514d864496357f69b66ac90a458c4cda (diff)