gcrypt: prefer the OS RNG

by default, gcrypt defaults to an userspace RNG, this is the wrong thing (tm) to do on linux. Switch to the SYSTEM rng instead.
author: Cristian Rodríguez <crodriguez@owncloud.com> 2022-07-26 18:24:12 +0000
committer: Lennart Poettering <lennart@poettering.net> 2022-07-29 16:08:48 +0200
commit: 80f967311ac53ae43b5a26332f32cc6665661338 (patch)
tree: 7bada6a6173008085150499ab8b653f74486d4c9 /src/basic/gcrypt-util.c
parent: c15d1ac2c4e8ce46c6d07621f7d5531cbc2160a8 (diff)
download: systemd-80f967311ac53ae43b5a26332f32cc6665661338.tar.gz
1 files changed, 2 insertions, 0 deletions
diff --git a/src/basic/gcrypt-util.c b/src/basic/gcrypt-util.c
index 64c63cdab1..1927fdfe46 100644
--- a/src/basic/gcrypt-util.c
+++ b/src/basic/gcrypt-util.c
@@ -15,6 +15,8 @@ void initialize_libgcrypt(bool secmem) {
          * feature should initialize the library manually */
         if (!secmem)
                 gcry_control(GCRYCTL_DISABLE_SECMEM);
+
+        gcry_control(GCRYCTL_SET_PREFERRED_RNG_TYPE, GCRY_RNG_TYPE_SYSTEM);
         gcry_control(GCRYCTL_INITIALIZATION_FINISHED, 0);
 }
author	Cristian Rodríguez <crodriguez@owncloud.com>	2022-07-26 18:24:12 +0000
committer	Lennart Poettering <lennart@poettering.net>	2022-07-29 16:08:48 +0200
commit	80f967311ac53ae43b5a26332f32cc6665661338 (patch)
tree	7bada6a6173008085150499ab8b653f74486d4c9 /src/basic/gcrypt-util.c
parent	c15d1ac2c4e8ce46c6d07621f7d5531cbc2160a8 (diff)
download	systemd-80f967311ac53ae43b5a26332f32cc6665661338.tar.gz