On 04/08/18 09:49, Kurt Roeckx wrote: > On Sun, Apr 08, 2018 at 07:15:32AM +0200, Richard Levitte wrote: >> In message <20180407185034.ga25...@roeckx.be> on Sat, 7 Apr 2018 20:50:35 >> +0200, Kurt Roeckx <k...@roeckx.be> said: >> >> kurt> > In going from 1.1.0 to 1.1.1, breaking platforms that used to >> kurt> > work is just plain wrong. >> kurt> >> kurt> So then I suggest we support the syscalls on all platforms that >> kurt> provide it. >> >> I'm sorry, I'm lost. "the syscalls"? You started refering to >> syscalls when discussing getrandom(), so I'm going to assume that it's >> related, but I fail to understand how it's related to platforms that >> break, and most specifically to VMS. What "syscalls" do you expect? > > This is not related to VMS. What I see as most likely to break > going from 1.1.0 to 1.1.1 is reseeding in a chroot. This can be > solved by using a system call instead of /dev/urandom if it's > available. > >
You say /dev/urandom is accessible on startup but no longer after the process calls chroot? If that is the problem, maybe the device could be opened on startup and just left open for later reseeding? Bernd. _______________________________________________ openssl-project mailing list openssl-project@openssl.org https://mta.openssl.org/mailman/listinfo/openssl-project
