Re: OpenSSH/OpenSSL patches to stop excessive entropy consumption

To: Thor Lancelot Simon <tls%panix.com@localhost>
Subject: Re: OpenSSH/OpenSSL patches to stop excessive entropy consumption
From: Pawel Jakub Dawidek <pjd%FreeBSD.org@localhost>
Date: Sun, 4 Mar 2012 14:20:54 +0100

On Sat, Mar 03, 2012 at 11:12:23PM -0500, Thor Lancelot Simon wrote:
> Sorry, something was wrong with that diff.  This one is right.

> -     arc4random_stir();
> -     arc4random_buf(rnd, sizeof(rnd));
> +     assert((read(urandom_fd, rnd, sizeof(rnd)) == sizeof(rnd)));

This is very bad idea to execute code as an assert() condition.
assert() is optional and if code is compiled with NDEBUG it will be
turned into no-op and in your case no random data will be read at all,
which makes this change dangerous.

-- 
Pawel Jakub Dawidek                       http://www.wheelsystems.com
FreeBSD committer                         http://www.FreeBSD.org
Am I Evil? Yes, I Am!                     http://tupytaj.pl

Attachment: pgpZI7ZQOxqI2.pgp
Description: PGP signature

Follow-Ups:
- Re: OpenSSH/OpenSSL patches to stop excessive entropy consumption
  - From: Thor Lancelot Simon

References:
- OpenSSH/OpenSSL patches to stop excessive entropy consumption
  - From: Thor Lancelot Simon
- Re: OpenSSH/OpenSSL patches to stop excessive entropy consumption
  - From: Thor Lancelot Simon

Prev by Date: Re: amd64 build failure
Next by Date: Re: OpenSSH/OpenSSL patches to stop excessive entropy consumption
Previous by Thread: Re: OpenSSH/OpenSSL patches to stop excessive entropy consumption
Next by Thread: Re: OpenSSH/OpenSSL patches to stop excessive entropy consumption
Indexes:

Home | Main Index | Thread Index | Old Index