You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@commons.apache.org by "Dapeng Sun (JIRA)" <ji...@apache.org> on 2016/07/07 07:00:19 UTC
[jira] [Resolved] (CRYPTO-96) OpenSSL Random implementation
silently falls back to Java
[ https://issues.apache.org/jira/browse/CRYPTO-96?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Dapeng Sun resolved CRYPTO-96.
------------------------------
Resolution: Fixed
CRYPTO-96: OpenSSL Random implementation silently falls back to Java
Fixes #66
Project: http://git-wip-us.apache.org/repos/asf/commons-crypto/repo
Commit: http://git-wip-us.apache.org/repos/asf/commons-crypto/commit/34df7306
Tree: http://git-wip-us.apache.org/repos/asf/commons-crypto/tree/34df7306
Diff: http://git-wip-us.apache.org/repos/asf/commons-crypto/diff/34df7306
> OpenSSL Random implementation silently falls back to Java
> ---------------------------------------------------------
>
> Key: CRYPTO-96
> URL: https://issues.apache.org/jira/browse/CRYPTO-96
> Project: Commons Crypto
> Issue Type: Bug
> Reporter: Sebb
> Assignee: Dapeng Sun
>
> The OpensslRandom class silently falls back to using the Java implementation if the native code is loaded but the nextRandBytes method fails.
> This seems wrong as it can cause unexpected results and mask problems.
> The corresponding OpensslCipher class does not fall back to JCE.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)