[issue18811] add ssl-based generator to random module
Christian Heimes
report at bugs.python.org
Fri Aug 23 16:28:20 CEST 2013
Christian Heimes added the comment:
I don't get it either. urandom is perfectly fine. I showed that urandom is just a bit slower than SSL_rand().
How about we generalize SystemRandom so users can implement a custom RNG class wby providing a method rng(amount) -> bytes?
Antoine Pitrou <report at bugs.python.org> schrieb:
>
>Antoine Pitrou added the comment:
>
>Seriously, why are we obsessed with performance when talking about a
>security feature? Did anyone *actually* complain about urandom() being
>too slow (ok, someone complained about it eating file descriptors...
>:-))?
>
>The question is whether OpenSSL's random generator produces better
>randomness than the system one: apparently it's not the case under
>Linux, how about other systems?
>
>----------
>
>_______________________________________
>Python tracker <report at bugs.python.org>
><http://bugs.python.org/issue18811>
>_______________________________________
----------
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue18811>
_______________________________________
More information about the Python-bugs-list
mailing list