Don't try to read the whole of the random file because when /dev/urandom is

used, it slows initialization too much reading an infinitely long file!
2005-03-04 20:10:29 +00:00 · 2005-03-04 20:10:29 +00:00 · 67bd6f9ccd
commit 67bd6f9ccd
parent 4869fa285b
1 changed files with 2 additions and 2 deletions
--- a/lib/ssluse.c
+++ b/lib/ssluse.c
@ -169,7 +169,7 @@ int random_the_seed(struct SessionHandle *data)
    /* let the option override the define */
    nread += RAND_load_file((data->set.ssl.random_file?
                             data->set.ssl.random_file:RANDOM_FILE),
-                            -1); /* -1 to read the entire file */
+                            16384); /* bounded size in case it's /dev/urandom */
    if(seed_enough(nread))
      return nread;
  }
@ -231,7 +231,7 @@ int random_the_seed(struct SessionHandle *data)
  RAND_file_name(buf, BUFSIZE);
  if(buf[0]) {
    /* we got a file name to try */
-    nread += RAND_load_file(buf, -1);
+    nread += RAND_load_file(buf, 16384);
    if(seed_enough(nread))
      return nread;
  }