diff options
author | Matt Caswell <matt@openssl.org> | 2020-01-15 18:12:59 +0000 |
---|---|---|
committer | Matt Caswell <matt@openssl.org> | 2020-01-24 15:12:56 +0000 |
commit | 8f21260b09eca6226255763e1856c12fbc71985c (patch) | |
tree | aa28cc741f8b5a26aeb66a3b5e52c6b6dedb66c1 /ssl/ssl_sess.c | |
parent | d80bf693faaa8ad08ca76f52228837306d77bb32 (diff) |
Make sure we use RAND_bytes_ex and RAND_priv_bytes_ex in libssl
Now that libssl knows about libctx we should use it wherever we generate
a random number.
Reviewed-by: Shane Lontis <shane.lontis@oracle.com>
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/10927)
Diffstat (limited to 'ssl/ssl_sess.c')
-rw-r--r-- | ssl/ssl_sess.c | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/ssl/ssl_sess.c b/ssl/ssl_sess.c index 8d18ce4504..941660d8a1 100644 --- a/ssl/ssl_sess.c +++ b/ssl/ssl_sess.c @@ -259,7 +259,7 @@ static int def_generate_session_id(SSL *ssl, unsigned char *id, { unsigned int retry = 0; do - if (RAND_bytes(id, *id_len) <= 0) + if (RAND_bytes_ex(ssl->ctx->libctx, id, *id_len) <= 0) return 0; while (SSL_has_matching_session_id(ssl, id, *id_len) && (++retry < MAX_SESS_ID_ATTEMPTS)) ; |