Re: Hardened OpenSSL fork

To: Kurt Roeckx <kurt@roeckx.be>
Cc: debian-devel@lists.debian.org
Subject: Re: Hardened OpenSSL fork
From: Steven Chamberlain <steven@pyro.eu.org>
Date: Mon, 21 Apr 2014 02:38:52 +0100
Message-id: <[🔎] 535476AC.2050702@pyro.eu.org>
In-reply-to: <[🔎] 20140420212629.GA23374@roeckx.be>
References: <[🔎] 53540CF1.5000109@pyro.eu.org> <[🔎] 20140420212629.GA23374@roeckx.be>

I agree it's not going to be portable in the near term, though there are
interesting changes being made and good code review happening.

Some dubious entropy sources were (only potentially?) used with
RAND_seed/add:

digests:
http://www.openbsd.org/cgi-bin/cvsweb/src/lib/libssl/src/crypto/dsa/dsa_asn1.c.diff?r1=1.7;r2=1.8
private key:
http://www.openbsd.org/cgi-bin/cvsweb/src/lib/libssl/src/crypto/rsa/rsa_crpt.c.diff?r1=1.2;r2=1.3

There is even a RAND_screen function on Win32 to use a screenshot of the
desktop as an entropy source.

I had a flashback to the Debian bug, and how uninitialised memory was
being used for that purpose.  They've ripped out this whole PRNG now to
use the one from their own libc:

http://www.openbsd.org/cgi-bin/cvsweb/src/lib/libssl/src/crypto/rand/rand_lib.c.diff?r1=1.14;r2=1.15

Regards,
-- 
Steven Chamberlain
steven@pyro.eu.org

Reply to:

Follow-Ups:
- Re: Hardened OpenSSL fork
  - From: Kurt Roeckx <kurt@roeckx.be>

References:
- Hardened OpenSSL fork
  - From: Steven Chamberlain <steven@pyro.eu.org>
- Re: Hardened OpenSSL fork
  - From: Kurt Roeckx <kurt@roeckx.be>

Prev by Date: Bug#745371: ITP: quassel-irssi -- An irssi plugin to connect to quassel core
Next by Date: Re: Advice for how to make new things policy (was: ':any' syntax in package names in jessie/sid Packages)
Previous by thread: Re: Hardened OpenSSL fork
Next by thread: Re: Hardened OpenSSL fork
Index(es):
- Date
- Thread