Antoine Pitrou added the comment: > The ssl module exposes OpenSSL's PRNG and advertises the API as secure > CPRNG: http://docs.python.org/3/library/ssl.html#random-generation
AFAICT, Python's PRNG isn't reset after fork, so I don't think OpenSSL's should be reset. OTOH, multiprocessing does reseed the random module after fork, so it should also do so for the ssl module if already loaded. We may add a note in the ssl docs stating that it's better to reseed after fork(). ---------- _______________________________________ Python tracker <rep...@bugs.python.org> <http://bugs.python.org/issue18747> _______________________________________ _______________________________________________ Python-bugs-list mailing list Unsubscribe: http://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com
