|
|
@@ -0,0 +1,30 @@
|
|
|
+--- heimdal-1.5.3.orig/lib/krb5/crypto-rand.c 2012-12-09 23:06:44.000000000 +0100
|
|
|
++++ heimdal-1.5.3/lib/krb5/crypto-rand.c 2015-11-03 19:30:39.336954603 +0100
|
|
|
+@@ -59,27 +59,6 @@ seed_something(void)
|
|
|
+ } else
|
|
|
+ seedfile[0] = '\0';
|
|
|
+
|
|
|
+- /* Calling RAND_status() will try to use /dev/urandom if it exists so
|
|
|
+- we do not have to deal with it. */
|
|
|
+- if (RAND_status() != 1) {
|
|
|
+-#ifndef _WIN32
|
|
|
+- krb5_context context;
|
|
|
+- const char *p;
|
|
|
+-
|
|
|
+- /* Try using egd */
|
|
|
+- if (!krb5_init_context(&context)) {
|
|
|
+- p = krb5_config_get_string(context, NULL, "libdefaults",
|
|
|
+- "egd_socket", NULL);
|
|
|
+- if (p != NULL)
|
|
|
+- RAND_egd_bytes(p, ENTROPY_NEEDED);
|
|
|
+- krb5_free_context(context);
|
|
|
+- }
|
|
|
+-#else
|
|
|
+- /* TODO: Once a Windows CryptoAPI RAND method is defined, we
|
|
|
+- can use that and failover to another method. */
|
|
|
+-#endif
|
|
|
+- }
|
|
|
+-
|
|
|
+ if (RAND_status() == 1) {
|
|
|
+ /* Update the seed file */
|
|
|
+ if (seedfile[0])
|
Waldemar Brodkorb