ssl: add zero strenght arguments to BN and RAND RNG calls

Reviewed-by: Tomas Mraz <tomas@openssl.org> (Merged from https://github.com/openssl/openssl/pull/15513)
author: Pauli <pauli@openssl.org> 2021-05-28 14:45:57 +1000
committer: Pauli <pauli@openssl.org> 2021-05-29 17:17:12 +1000
commit: 0f8815aace625f869a42cfc5c254c08d5a668077 (patch)
tree: 3bbf7b2aaec23023be2232920f5b0011744e4126 /ssl/ssl_sess.c
parent: 23e97567be012ff1b5082bf149810c72816c29bd (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/ssl/ssl_sess.c b/ssl/ssl_sess.c
index 88bdd14dc8..3409795628 100644
--- a/ssl/ssl_sess.c
+++ b/ssl/ssl_sess.c
@@ -264,7 +264,7 @@ static int def_generate_session_id(SSL *ssl, unsigned char *id,
 {
     unsigned int retry = 0;
     do
-        if (RAND_bytes_ex(ssl->ctx->libctx, id, *id_len) <= 0)
+        if (RAND_bytes_ex(ssl->ctx->libctx, id, *id_len, 0) <= 0)
             return 0;
     while (SSL_has_matching_session_id(ssl, id, *id_len) &&
            (++retry < MAX_SESS_ID_ATTEMPTS)) ;
author	Pauli <pauli@openssl.org>	2021-05-28 14:45:57 +1000
committer	Pauli <pauli@openssl.org>	2021-05-29 17:17:12 +1000
commit	0f8815aace625f869a42cfc5c254c08d5a668077 (patch)
tree	3bbf7b2aaec23023be2232920f5b0011744e4126 /ssl/ssl_sess.c
parent	23e97567be012ff1b5082bf149810c72816c29bd (diff)