Hi Igor, 2012/2/28 Igor Novgorodov <i...@novg.net>: > On 28.02.2012 1:37, Fabian Knittel wrote: >> Your patch removes the code that causes havege_init() to only be >> called once. You never want to initialise your PRNG more than once, >> otherwise you increase the risk that your randomness is predictable. >> So please revert that part of your patch. > > Yes, my fault. I didn't notice that the variable was static, so i though > that it was local-scope only and removed the check... The fixed patch is > attached
Thanks! >> ([...], although I haven't tested it and don't have any >> experience with PolarSSL.) Maybe Adriaan or someone else can take a quick peek and give a full-hearted ACK? Cheers Fabian
