summaryrefslogtreecommitdiff
path: root/src/lib/libssl/ssl_sess.c
diff options
context:
space:
mode:
Diffstat (limited to 'src/lib/libssl/ssl_sess.c')
-rw-r--r--src/lib/libssl/ssl_sess.c6
1 files changed, 2 insertions, 4 deletions
diff --git a/src/lib/libssl/ssl_sess.c b/src/lib/libssl/ssl_sess.c
index 3ffd7078a5..d76fb8b9c8 100644
--- a/src/lib/libssl/ssl_sess.c
+++ b/src/lib/libssl/ssl_sess.c
@@ -1,4 +1,4 @@
1/* $OpenBSD: ssl_sess.c,v 1.41 2014/09/22 14:26:22 jsing Exp $ */ 1/* $OpenBSD: ssl_sess.c,v 1.42 2014/10/18 16:13:16 jsing Exp $ */
2/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com) 2/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
3 * All rights reserved. 3 * All rights reserved.
4 * 4 *
@@ -136,7 +136,6 @@
136 */ 136 */
137 137
138#include <openssl/lhash.h> 138#include <openssl/lhash.h>
139#include <openssl/rand.h>
140 139
141#ifndef OPENSSL_NO_ENGINE 140#ifndef OPENSSL_NO_ENGINE
142#include <openssl/engine.h> 141#include <openssl/engine.h>
@@ -258,8 +257,7 @@ def_generate_session_id(const SSL *ssl, unsigned char *id, unsigned int *id_len)
258 unsigned int retry = 0; 257 unsigned int retry = 0;
259 258
260 do { 259 do {
261 if (RAND_pseudo_bytes(id, *id_len) <= 0) 260 arc4random_buf(id, *id_len);
262 return 0;
263 } while (SSL_has_matching_session_id(ssl, id, *id_len) && 261 } while (SSL_has_matching_session_id(ssl, id, *id_len) &&
264 (++retry < MAX_SESS_ID_ATTEMPTS)); 262 (++retry < MAX_SESS_ID_ATTEMPTS));
265 263
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-04-26 18:05:37 +0000