You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@commons.apache.org by "Sebb (JIRA)" <ji...@apache.org> on 2016/06/30 13:23:10 UTC

[jira] [Created] (CRYPTO-96) OpenSSL Random implementation silently falls back to Java

Sebb created CRYPTO-96:
--------------------------

             Summary: OpenSSL Random implementation silently falls back to Java
                 Key: CRYPTO-96
                 URL: https://issues.apache.org/jira/browse/CRYPTO-96
             Project: Commons Crypto
          Issue Type: Bug
            Reporter: Sebb


The OpensslRandom class silently falls back to using the Java implementation if the native code is loaded but the nextRandBytes method fails.

This seems wrong as it can cause unexpected results and mask problems.

The corresponding OpensslCipher class does not fall back to JCE.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)