ID: 39498 User updated by: mark at exonetric dot com Reported By: mark at exonetric dot com Status: Bogus Bug Type: Performance problem Operating System: Linux 2.6/Debian Etch PHP Version: 4.4.4 New Comment:
right, i can see now there is some odd zend_parameter stuff that fiddles with the source variable directly. That's very non-intuitive and will teach me to read docs I suppose. Previous Comments: ------------------------------------------------------------------------ [2006-11-13 16:28:44] [EMAIL PROTECTED] http://no.php.net/mcrypt_create_iv ------------------------------------------------------------------------ [2006-11-13 15:58:15] [EMAIL PROTECTED] You can use MCRYPT_DEV_URANDOM and get the data for /dev/urandom. ------------------------------------------------------------------------ [2006-11-13 15:48:11] mark at exonetric dot com Description: ------------ mcrypt.c appears to be written to use /dev/random for entropy in all cases. As good entropy is a limited resource when obtained from /dev/random, code that makes frequent calls to mcrypt routines that require entropy can block waiting for entropy unexpectedly. PHP_FUNCTION(mcrypt_create_iv) should be modified to permit configuration of /dev/random or /dev/urandom at least at compile time if not at run time. Reproduce code: --------------- any code that calls mcrypt routines frequently Expected result: ---------------- if called frequently enough, will block waiting for entropy. ------------------------------------------------------------------------ -- Edit this bug report at http://bugs.php.net/?id=39498&edit=1
