I added it to stdlib because that's where OpenSSL, etc, expects to find it.
uClibc-20050208-arc4random-1.patch [^] (9,384 bytes) 02-08-05 19:10 uClibc-0.9.27-arc4random-1.patch-testing [^] (20,314 bytes) 02-11-05 05:59 
| Anonymous | Login | Signup for a new account | 11-10-2008 10:40 PST |
| Main | My View | View Issues | Change Log | Docs |
| Viewing Issue Simple Details [ Jump to Notes ] | [ View Advanced ] [ Issue History ] [ Print ] | ||||||||
| ID | Category | Severity | Reproducibility | Date Submitted | Last Update | ||||
| 0000090 | [uClibc] Security | feature | N/A | 02-08-05 19:10 | 01-08-06 01:07 | ||||
| Reporter | ashes | View Status | public | ||||||
| Assigned To | uClibc | ||||||||
| Priority | normal | Resolution | fixed | ||||||
| Status | closed | Product Version | |||||||
| Summary | 0000090: New arc4random() function. | ||||||||
| Description |
This function originates from OpenBSD. It is a very fast random number generator. Attached is all the code we need, and hooks so we can use it with SSP and/or sysctl erandom. I tested it fairly well with SSP and I couldn't messure any performance loss compared to using /dev/urandom directly. I also timed it while using the sysctl hooks and again found no measureable loss. It might need some tweaking to be compatible with c99/standards. I added it to stdlib because that's where OpenSSL, etc, expects to find it. |
||||||||
| Additional Information | |||||||||
| Attached Files |
uClibc-20050208-arc4random-1.patch [^] (9,384 bytes) 02-08-05 19:10 uClibc-0.9.27-arc4random-1.patch-testing [^] (20,314 bytes) 02-11-05 05:59 |
||||||||
|
|
|||||||||
 Relationships |
|
|
Notes |
|
|
(0000045) ashes 02-11-05 05:58 |
Hi. Ive added hooks for mktemp(3) to use arc4random. This new patch divides urandom from erandom so non-crypto apps don't use kernel entropy. I imagine there will need to be modifications before it would be accepted. Let me know. The sysctl urandom interface was added with minimal modifications/additions to the kernel patch for erandom. regards |
|
(0000869) vapier 01-08-06 01:07 |
ive imported arc4random() all by itself ... that is, none of the ssp stuff/erandom stuff was added since it's all outdated |
|
Issue History |
|||
| Date Modified | Username | Field | Change |
| 02-08-05 19:10 | ashes | New Issue | |
| 02-08-05 19:10 | ashes | File Added: uClibc-20050208-arc4random-1.patch | |
| 02-11-05 05:58 | ashes | Note Added: 0000045 | |
| 02-11-05 05:59 | ashes | File Added: uClibc-0.9.27-arc4random-1.patch-testing | |
| 03-16-05 11:55 | andersen | Assigned To | andersen => uClibc |
| 01-08-06 01:07 | vapier | Note Added: 0000869 | |
| 01-08-06 01:07 | vapier | Status | assigned => closed |
| 01-08-06 01:07 | vapier | Resolution | open => fixed |
| Copyright © 2000 - 2006 Mantis Group |  |
