open-dsi
/
postgres
mirror of https://github.com/postgres/postgres
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Use RAND_poll() for seeding randomness after fork().

Browse Source 
OpenSSL deprecated RAND_cleanup(), and OpenSSL 1.1.0 made it into a
no-op.  Replace it with RAND_poll(), per an OpenSSL community
recommendation.  While this has no user-visible consequences under
OpenSSL defaults, it might help under non-default settings.

Daniel Gustafsson, reviewed by David Steele and Michael Paquier.

Discussion: https://postgr.es/m/9B038FA5-23E8-40D0-B932-D515E1D8F66A@yesql.se
pull/55/head
Noah Misch 5 years ago
parent 0a0727ccfc
commit ce4939ff70
1 changed files with 4 additions and 2 deletions
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Show Stats Download Patch File Download Diff File
  1. 6
      src/backend/postmaster/fork_process.c

6
src/backend/postmaster/fork_process.c
Unescape View File

@ -109,10 +109,12 @@ fork_process(void)
}
/*
* Make sure processes do not share OpenSSL randomness state.
* Make sure processes do not share OpenSSL randomness state. This is
* no longer required in OpenSSL 1.1.1 and later versions, but until
* we drop support for version < 1.1.1 we need to do this.
*/
#ifdef USE_OPENSSL
RAND_cleanup();
RAND_poll();
#endif
}

Write Preview
Loading…
Cancel
Save