You may want to see the threads:
BUG: CreateToolhelp32Snapshot
First (initializing) call to RAND_status() very slow on Win32
An excerpt:
Jeffrey Altman
Thu, 14 Aug 2003 11:23:38 -0700

The reason that we go to all this trouble to examine alternative sources
of randomness
other than CryptGetRandom() is that Microsoft has refused to publish the
sources of
randomness which are used. Therefore, we have no ability to know whether
or not the
randomness reported by Windows is in fact random.

However, it does not mean, that the method should be thread-unsafe and
extremely slow under some circumstances...



[] On Behalf Of Steven Reddie
Sent: Monday, April 04, 2005 7:45 AM
Subject: How good a random source is Crypto API?
The non-thread-safe nature of RAND_poll for Win32 is something I
need to address as it's impossible given the use of my library to expect
RAND_poll to be called before other threads exist. This leads me to the
question of how good a random source is the CryptGenRandom function on
Windows. If it is a good enough source, then why bother with everything
else that is done inside RAND_poll? The MSDN documentation makes it
sound like similar things are being done for their random number seeding
as is done in RAND_poll.

__________________________________________________ ____________________
OpenSSL Project
Development Mailing List
Automated List Manager