diff options
author | Randall S. Becker <randall.becker@nexbridge.ca> | 2022-06-14 06:10:53 -0400 |
---|---|---|
committer | Pauli <pauli@openssl.org> | 2022-06-17 09:29:09 +1000 |
commit | 9e86b3815719d29f7bde2294403f97c42ce82a16 (patch) | |
tree | 3315d19db80c3753071b2e84b53575999d7a2073 /crypto/rand | |
parent | 8b738f38514d864496357f69b66ac90a458c4cda (diff) |
Clarify use of EGD for HPNS in rand/rand_egd.c comments.
Signed-off-by: Randall S. Becker <randall.becker@nexbridge.ca>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Paul Dale <pauli@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/18565)
Diffstat (limited to 'crypto/rand')
-rw-r--r-- | crypto/rand/rand_egd.c | 10 |
1 files changed, 6 insertions, 4 deletions
diff --git a/crypto/rand/rand_egd.c b/crypto/rand/rand_egd.c index c0038d71ef..762c56ded4 100644 --- a/crypto/rand/rand_egd.c +++ b/crypto/rand/rand_egd.c @@ -54,15 +54,17 @@ struct sockaddr_un { /* * HPNS: * - * Our current MQ 5.3 EGD requies compatability-mode sockets - * This code forces the mode to compatibility if required - * and then restores the mode. + * This code forces the use of compatibility mode if required on HPE NonStop + * when coreutils PRNGD is used and then restores the previous mode + * after establishing the socket. This is not required on x86 where hardware + * randomization should be used instead of EGD available as of OpenSSL 3.0. + * Use --with-rand-seed=rdcpu when configuring x86 with 3.0 and above. * * Needs review: * * The better long-term solution is to either run two EGD's each in one of * the two modes or revise the EGD code to listen on two different sockets - * (each in one of the two modes). + * (each in one of the two modes) or use the hardware randomizer. */ _variable int hpns_socket(int family, |