Re: Bug#742145: openssl: uses only 32 bytes (256 bit) for key generation

To: Thorsten Glaser <tg@mirbsd.de>, 742145@bugs.debian.org
Cc: team@security.debian.org, ssl-cert@packages.debian.org
Subject: Re: Bug#742145: openssl: uses only 32 bytes (256 bit) for key generation
From: Joey Hess <joeyh@debian.org>
Date: Wed, 19 Mar 2014 17:33:44 -0400
Message-id: <[🔎] 20140319213344.GA14194@kitenet.net>
In-reply-to: <Pine.BSM.4.64L.1403191919400.17904@herc.mirbsd.org>
References: <20140319115054.24816.67858.reportbug@tglase-nb.lan.tarent.de> <87pplib0tv.fsf@mid.deneb.enyo.de> <Pine.BSM.4.64L.1403191919400.17904@herc.mirbsd.org>

Thorsten Glaser wrote:
> Florian Weimer dixit:
> >Historically, the OpenSSL command line tools have been intended for
> >debugging only.
> 
> I disagree, in the case of genrsa and friends anyway.

Me too, and openssl(1ssl) does not mention debugging or not for
production use or give any warnings. Also, openssl genpkey seems
to have the same problem for RSA keys, and so does openssl dsaparam for
DSA keys.

Google has 96k hits for "openssl genrsa". The very second hit is a HOWTO
generate RSA key located on .... openssl.org! (The same file is shipped
as /usr/share/doc/openssl/HOWTO/keys.txt in Debian.)

Also, /usr/sbin/make-ssl-cert uses openssl req, and strace shows it
also reading only 32 bytes bits of entropy.

ENTROPY_NEEDED is hardcoded to 32.

-- 
see shy jo

Attachment: signature.asc
Description: Digital signature

Reply to:

Follow-Ups:
- Re: Bug#742145: openssl: uses only 32 bytes (256 bit) for key generation
  - From: Thorsten Glaser <tg@mirbsd.de>
- Re: Bug#742145: openssl: uses only 32 bytes (256 bit) for key generation
  - From: Joey Hess <joeyh@debian.org>

Prev by Date: Re: Ubuntu and the default page
Next by Date: Re: Bug#742145: openssl: uses only 32 bytes (256 bit) for key generation
Previous by thread: Re: Ubuntu and the default page
Next by thread: Re: Bug#742145: openssl: uses only 32 bytes (256 bit) for key generation
Index(es):
- Date
- Thread