summaryrefslogtreecommitdiffstats
path: root/lib/libssl/src/apps/gendh.c
diff options
context:
space:
mode:
authorjsing <jsing@openbsd.org>2014-06-02 16:23:18 +0000
committerjsing <jsing@openbsd.org>2014-06-02 16:23:18 +0000
commitcdb631cfba3a11501d4f03982268c1eb46167fdb (patch)
treeb8cfca00e95c45ff81e4ea6c7eacfccb0edf509b /lib/libssl/src/apps/gendh.c
parentA few months back there was a big community fuss regarding direct-use (diff)
downloadwireguard-openbsd-cdb631cfba3a11501d4f03982268c1eb46167fdb.tar.xz
wireguard-openbsd-cdb631cfba3a11501d4f03982268c1eb46167fdb.zip
Stop pretending that openssl(1) applications support the -rand option.
The underlying code has long been removed, making this a no-op. If your random subsystem actually requires that you seed it from a file, then you really should go and buy a new random subsystem that was built after 1990. Diff from Brent Cook. ok deraadt@
Diffstat (limited to 'lib/libssl/src/apps/gendh.c')
-rw-r--r--lib/libssl/src/apps/gendh.c10
1 files changed, 1 insertions, 9 deletions
diff --git a/lib/libssl/src/apps/gendh.c b/lib/libssl/src/apps/gendh.c
index 53b09985f75..337529dcff7 100644
--- a/lib/libssl/src/apps/gendh.c
+++ b/lib/libssl/src/apps/gendh.c
@@ -97,7 +97,6 @@ gendh_main(int argc, char **argv)
int ret = 1, num = DEFBITS;
int g = 2;
char *outfile = NULL;
- char *inrand = NULL;
#ifndef OPENSSL_NO_ENGINE
char *engine = NULL;
#endif
@@ -131,11 +130,7 @@ gendh_main(int argc, char **argv)
engine = *(++argv);
}
#endif
- else if (strcmp(*argv, "-rand") == 0) {
- if (--argc < 1)
- goto bad;
- inrand = *(++argv);
- } else
+ else
break;
argv++;
argc--;
@@ -153,9 +148,6 @@ bad:
#ifndef OPENSSL_NO_ENGINE
BIO_printf(bio_err, " -engine e - use engine e, possibly a hardware device.\n");
#endif
- BIO_printf(bio_err, " -rand file:file:...\n");
- BIO_printf(bio_err, " - load the file (or the files in the directory) into\n");
- BIO_printf(bio_err, " the random number generator\n");
goto end;
}
#ifndef OPENSSL_NO_ENGINE