You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@commons.apache.org by "Dapeng Sun (JIRA)" <ji...@apache.org> on 2016/07/04 09:15:11 UTC

[jira] [Commented] (CRYPTO-96) OpenSSL Random implementation silently falls back to Java

    [ https://issues.apache.org/jira/browse/CRYPTO-96?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15361064#comment-15361064 ] 

Dapeng Sun commented on CRYPTO-96:
----------------------------------

Thank Sebb， PR created https://github.com/apache/commons-crypto/pull/66

> OpenSSL Random implementation silently falls back to Java
> ---------------------------------------------------------
>
>                 Key: CRYPTO-96
>                 URL: https://issues.apache.org/jira/browse/CRYPTO-96
>             Project: Commons Crypto
>          Issue Type: Bug
>            Reporter: Sebb
>            Assignee: Dapeng Sun
>
> The OpensslRandom class silently falls back to using the Java implementation if the native code is loaded but the nextRandBytes method fails.
> This seems wrong as it can cause unexpected results and mask problems.
> The corresponding OpensslCipher class does not fall back to JCE.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)