Don't use a ssl specific DRBG anymore

Since the public and private DRBG are per thread we don't need one per ssl object anymore. It could also try to get entropy from a DRBG that's really from an other thread because the SSL object moved to an other thread. Reviewed-by: Tim Hudson <tjh@openssl.org> Reviewed-by: Paul Dale <paul.dale@oracle.com> Reviewed-by: Matthias St. Pierre <Matthias.St.Pierre@ncp-e.com> (Merged from https://github.com/openssl/openssl/pull/5547)
author: Kurt Roeckx <kurt@roeckx.be> 2018-03-08 22:30:28 +0100
committer: Dr. Matthias St. Pierre <Matthias.St.Pierre@ncp-e.com> 2018-03-19 15:04:40 +0100
commit: 16cfc2c90d9e7776965db07c1f31bbec2f6c41e3 (patch)
tree: dab155d1453fce5e7e2a5d6c2d4d02557227cb41 /ssl/record
parent: 7caf122e717e79afcb986fe217e77a630b67bf4c (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/ssl/record/ssl3_record.c b/ssl/record/ssl3_record.c
index fa902f30fb..c21a478a71 100644
--- a/ssl/record/ssl3_record.c
+++ b/ssl/record/ssl3_record.c
@@ -972,7 +972,7 @@ int tls1_enc(SSL *s, SSL3_RECORD *recs, size_t n_recs, int sending)
                         SSLfatal(s, SSL_AD_INTERNAL_ERROR, SSL_F_TLS1_ENC,
                                  ERR_R_INTERNAL_ERROR);
                         return -1;
-                    } else if (ssl_randbytes(s, recs[ctr].input, ivlen) <= 0) {
+                    } else if (RAND_bytes(recs[ctr].input, ivlen) <= 0) {
                         SSLfatal(s, SSL_AD_INTERNAL_ERROR, SSL_F_TLS1_ENC,
                                  ERR_R_INTERNAL_ERROR);
                         return -1;
author	Kurt Roeckx <kurt@roeckx.be>	2018-03-08 22:30:28 +0100
committer	Dr. Matthias St. Pierre <Matthias.St.Pierre@ncp-e.com>	2018-03-19 15:04:40 +0100
commit	16cfc2c90d9e7776965db07c1f31bbec2f6c41e3 (patch)
tree	dab155d1453fce5e7e2a5d6c2d4d02557227cb41 /ssl/record
parent	7caf122e717e79afcb986fe217e77a630b67bf4c (diff)