So the OpenSSL codebase does "get the time, add it as a random seed"

in a bunch of places inside the TLS engine, to try to keep entropy high. I wonder if their moto is "If you can't solve a problem, at least try to do it badly". ok miod
author: deraadt <> 2014-04-14 17:45:38 +0000
committer: deraadt <> 2014-04-14 17:45:38 +0000
commit: 67dc984dfef68b4f0fe3ddcf4b7e2481dd2c62b9 (patch)
tree: 9a82fc040475abf4e516b4c99e34037b7ef267da /src/lib/libssl/d1_clnt.c
parent: 20ca94a4292674751b6713ef6106d34384cef84c (diff)
download: openbsd-67dc984dfef68b4f0fe3ddcf4b7e2481dd2c62b9.tar.gz
openbsd-67dc984dfef68b4f0fe3ddcf4b7e2481dd2c62b9.tar.bz2
openbsd-67dc984dfef68b4f0fe3ddcf4b7e2481dd2c62b9.zip
1 files changed, 0 insertions, 2 deletions
diff --git a/src/lib/libssl/d1_clnt.c b/src/lib/libssl/d1_clnt.c
index 15c4bca58c..4c6aac7536 100644
--- a/src/lib/libssl/d1_clnt.c
+++ b/src/lib/libssl/d1_clnt.c
@@ -147,7 +147,6 @@ int
 dtls1_connect(SSL *s)
 {
        BUF_MEM *buf = NULL;
-        unsigned long Time = (unsigned long)time(NULL);
        void (*cb)(const SSL *ssl, int type, int val) = NULL;
        int ret = -1;
        int new_state, state, skip = 0;
@@ -156,7 +155,6 @@ dtls1_connect(SSL *s)
        char labelbuffer[sizeof(DTLS1_SCTP_AUTH_LABEL)];
 #endif
-        RAND_add(&Time, sizeof(Time), 0);
        ERR_clear_error();
        errno = 0;
author	deraadt <>	2014-04-14 17:45:38 +0000
committer	deraadt <>	2014-04-14 17:45:38 +0000
commit	67dc984dfef68b4f0fe3ddcf4b7e2481dd2c62b9 (patch)
tree	9a82fc040475abf4e516b4c99e34037b7ef267da /src/lib/libssl/d1_clnt.c
parent	20ca94a4292674751b6713ef6106d34384cef84c (diff)
download	openbsd-67dc984dfef68b4f0fe3ddcf4b7e2481dd2c62b9.tar.gz openbsd-67dc984dfef68b4f0fe3ddcf4b7e2481dd2c62b9.tar.bz2 openbsd-67dc984dfef68b4f0fe3ddcf4b7e2481dd2c62b9.zip