Always use random data from the crypto provider

2025-08-31 06:25:31 +00:00 · 2018-04-18 12:13:28 -07:00
parent 6a49d41c5b
commit 9a3a257374
18 changed files with 5 additions and 379 deletions
--- a/win32utils/Configure
+++ b/win32utils/Configure
@@ -232,7 +232,6 @@ my @substdefh = ("AES_CC",
 my %configdefp;

 my @substdefp = ("ISC_PLATFORM_BUSYWAITNOP",
-                 "ISC_PLATFORM_CRYPTORANDOM",
                 "ISC_PLATFORM_HAVEATOMICSTORE",
                 "ISC_PLATFORM_HAVEATOMICSTOREQ",
                 "ISC_PLATFORM_HAVECMPXCHG",
@@ -2076,13 +2075,6 @@ if ($cookie_algorithm eq "sha1") {
    die "Unrecognized cookie algorithm: $cookie_algorithm\n";
 }

-# enable-crypto-rand
-if ($enable_crypto_rand eq "yes") {
-    if (($use_openssl eq "no") && ($enable_native_pkcs11 eq "no")) {
-        die "No crypto provider for random functions\n";
-    }
-    $configdefp{"ISC_PLATFORM_CRYPTORANDOM"} = "\"$cryptolib\"";
-}
 print "Cryptographic library for DNSSEC: $cryptolib\n";

 # enable-openssl-hash