libexpat and XML_POOR_ENTROPY

Jeffrey Walton noloader at gmail.com
Fri Feb 25 12:38:17 CET 2022


Hi Everyone,

I was looking at the libexpat recipe again. This kind of jumps out
from https://sourceforge.net/p/gar/code/HEAD/tree/csw/mgar/pkg/libexpat1/trunk/Makefile#l42:

# No high-entropy random in old Solaris versions
EXTRA_CPPFLAGS += -DXML_POOR_ENTROPY

Solaris has /dev/urandom. It meets requirements. As far as I know,
even the earlier versions of the device were sufficient for
cryptographic needs. It may be time to revisit that define.

My apologies if I am missing something.

Jeff


More information about the users mailing list