If RAND_status() returns success (1), can I trust it?
In my server running on AIX, I call RAND_seed followed by RAND_status. if RAND_status returns success I don't try any other methods to seed the PRNG.
Later during handshake with a client, md_rand.c returns an error complaining there is not enough entropy. This error occurs during the Server_write_key_exchnage_A phase of the handshake. md_rand function ssleay_rand_bytes.
If I can't trust RAND_status to tell me the PRNG is satisfied, what can I do? If the answer from RAND_status() is reliable, why would ssleay_rand_bytes be upset?
thanks for any input.
Dave McLellan --Consulting Software Engineer - SPEA Engineering
EMC Corporation
228 South St. Mail Stop: 228 LL/AA-24
Hopkinton, MA 01748 USA
+1-508-249-1257 F: +1-508-497-8030 [EMAIL PROTECTED]
