Use RAND_pseudo_bytes, not RAND_bytes, for IVs/salts.
authorBodo Möller <bodo@openssl.org>
Thu, 2 Mar 2000 22:44:55 +0000 (22:44 +0000)
committerBodo Möller <bodo@openssl.org>
Thu, 2 Mar 2000 22:44:55 +0000 (22:44 +0000)
CHANGES

diff --git a/CHANGES b/CHANGES
index e3d8337..bd9a73c 100644 (file)
--- a/CHANGES
+++ b/CHANGES
@@ -4,6 +4,10 @@
 
  Changes between 0.9.5 and 0.9.6  [XX XXX 2000]
 
+  *) In PEM_ASN1_write_bio and some other functions, use RAND_pseudo_bytes
+     instead of RAND_bytes for encryption IVs and salts.
+     [Bodo Moeller]
+
   *) Include RAND_status() into RAND_METHOD instead of implementing
      it only for md_rand.c  Otherwise replacing the PRNG by calling
      RAND_set_rand_method would be impossible.