Don't set FIPS rand method at same time as RAND method as this can cause the
authorDr. Stephen Henson <steve@openssl.org>
Tue, 21 Jun 2011 17:10:21 +0000 (17:10 +0000)
committerDr. Stephen Henson <steve@openssl.org>
Tue, 21 Jun 2011 17:10:21 +0000 (17:10 +0000)
FIPS library to fail. Applications that want to set the FIPS rand method can do
so explicitly and presumably they know what they are doing...

crypto/rand/rand_lib.c

index 0c68e35..8c28550 100644 (file)
@@ -78,10 +78,6 @@ static const RAND_METHOD *default_RAND_meth = NULL;
 
 int RAND_set_rand_method(const RAND_METHOD *meth)
        {
-#ifdef OPENSSL_FIPS
-       if (!FIPS_rand_set_method(meth))
-               return 0;
-#endif
 #ifndef OPENSSL_NO_ENGINE
        if(funct_ref)
                {