shaba/systemd-stable
1
1
Fork 0
mirror of https://github.com/systemd/systemd-stable.git synced 2025-01-10 01:17:44 +03:00
Code

gcrypt: prefer the OS RNG

Browse Source 
by default, gcrypt defaults to an userspace RNG, this is
the wrong thing (tm) to do on linux.

Switch to the SYSTEM rng instead.

(cherry picked from commit 80f967311a)
(cherry picked from commit ca0ed3a78c)
This commit is contained in:
Cristian Rodríguez 2022-07-26 18:24:12 +00:00 committed by Zbigniew Jędrzejewski-Szmek
parent 427995b49b
commit 97c82a3abb
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
src/basic/gcrypt-util.c
View File

@ -15,6 +15,8 @@ void initialize_libgcrypt(bool secmem) {
* feature should initialize the library manually */
if (!secmem)
gcry_control(GCRYCTL_DISABLE_SECMEM);
gcry_control(GCRYCTL_SET_PREFERRED_RNG_TYPE, GCRY_RNG_TYPE_SYSTEM);
gcry_control(GCRYCTL_INITIALIZATION_FINISHED, 0);
}