Created attachment 762187 [details] [diff] [review] Windows patch (lib/freebl/win_rand.c) All the major operating systems have a system entropy source: /dev/urandom on POSIX and RtlGenRandom on Windows. By default, RNG_SystemRNG should fail (returning 0) rather than falling back on rng_systemFromNoise if it cannot use the system entropy source. The attached Windows patch makes this change to the RNG_SystemRNG function in lib/freebl/win_rand.c. It also removes the obsolete code for Windows versions older than Windows XP.
Comment on attachment 762187 [details] [diff] [review] Windows patch (lib/freebl/win_rand.c) Ryan reviewed this patch at https://codereview.chromium.org/17058006/ Patch checked in: https://hg.mozilla.org/projects/nss/rev/17df3000588a
Edited the bug's summary to reflect what was done in NSS 3.15.1 (Windows only). Opened bug 889116 to finish this work.