From ea17b0feec9b5f455f1bc4b13d7a38ef0549b3d1 Mon Sep 17 00:00:00 2001
From: "Dr. Stephen Henson" <steve@openssl.org>
Date: Mon, 5 Sep 2011 15:45:13 +0000
Subject: [PATCH 1/1] Check reseed interval before generating output.

---
 fips/rand/fips_drbg_lib.c | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/fips/rand/fips_drbg_lib.c b/fips/rand/fips_drbg_lib.c
index f5f365b01e..a0bb9eda64 100644
--- a/fips/rand/fips_drbg_lib.c
+++ b/fips/rand/fips_drbg_lib.c
@@ -373,6 +373,9 @@ int FIPS_drbg_generate(DRBG_CTX *dctx, unsigned char *out, size_t outlen,
 		goto end;
 		}
 
+	if (dctx->reseed_counter >= dctx->reseed_interval)
+		dctx->status = DRBG_STATUS_RESEED;
+
 	if (dctx->status == DRBG_STATUS_RESEED || prediction_resistance)
 		{
 		if (!FIPS_drbg_reseed(dctx, adin, adinlen))
-- 
2.34.1