r19004@catbus: nickm | 2008-03-21 15:18:43 -0400

Use RAND_poll() again: the bug that made us stop using it has been fixed. svn:r14150
author: Nick Mathewson <nickm@torproject.org> 2008-03-21 19:18:57 +0000
committer: Nick Mathewson <nickm@torproject.org> 2008-03-21 19:18:57 +0000
commit: b5b77f8bf37a193f23c5b68f688f6175266a612f (patch)
tree: 644390476138db18724699ab2f04f9c7bbe3729b /ChangeLog
parent: 64f38f217ae21eaa00b48749353dad62cfcb72c6 (diff)
download: tor-b5b77f8bf37a193f23c5b68f688f6175266a612f.tar
tor-b5b77f8bf37a193f23c5b68f688f6175266a612f.tar.gz
1 files changed, 7 insertions, 0 deletions
diff --git a/ChangeLog b/ChangeLog
index 4b8ceeb57..e4696d736 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -24,6 +24,13 @@ Changes in version 0.2.1.1-alpha - 2008-??-??
     - Add a couple of extra warnings to --enable-gcc-warnings for GCC 4.3,
       and stop using a warning that had become unfixably verbose under GCC
       4.3.
+    - Start using OpenSSL's RAND_poll() for better (and more portable)
+      cross-platform entropy collection again.  We used to use it, then
+      stopped using it because of a bug that could crash systems that called
+      RAND_poll when they had a lot of fds open.  It looks like the bug got
+      fixed in late 2006.  Our new behavior is to call RAND_poll() at
+      startup, and to call RAND_poll() when we reseed later only if we
+      have a non-buggy OpenSSL version.
 
   o Code simplifications and refactoring:
     - Refactor code using connection_ap_handshake_attach_circuit() to
author	Nick Mathewson <nickm@torproject.org>	2008-03-21 19:18:57 +0000
committer	Nick Mathewson <nickm@torproject.org>	2008-03-21 19:18:57 +0000
commit	b5b77f8bf37a193f23c5b68f688f6175266a612f (patch)
tree	644390476138db18724699ab2f04f9c7bbe3729b /ChangeLog
parent	64f38f217ae21eaa00b48749353dad62cfcb72c6 (diff)
download	tor-b5b77f8bf37a193f23c5b68f688f6175266a612f.tar tor-b5b77f8bf37a193f23c5b68f688f6175266a612f.tar.gz