Hi Nan, Viktor, et al.,
/From: openssl-users https://mta.openssl.org/mailman/listinfo/openssl-users>> On Behalf Of
Viktor//Dukhovni //Sent: Wednesday, 31 March, 2021 10:31/
> Most likely you haven't configured a suitable CAfile and/or CApath,
> which contains the root CA that ultimately issued
I would be **very** concerned about bypassing a blocking RAND. It is
almost certainly blocking because it does not have enough randomness to
satisfy your request. By skipping this, you are likely getting poor
quality random values and this can effectively negate any security you
are gaining
Thank You Paul and Matthias for your help.
The reason I am trying to have separate RAND_METHOD for two threads is, the
first thread which runs DNS bind code registers for RAND_METHOD through dnssec
module in it. It registers via either ENGINE_set_default_RAND() or
RAND_set_rand_method() based