[tor-bugs] #17799 [Tor]: Hash All PRNG output before use
Tor Bug Tracker & Wiki
blackhole at torproject.org
Thu Dec 10 19:32:56 UTC 2015
#17799: Hash All PRNG output before use
--------------------+------------------------------------
Reporter: teor | Owner:
Type: defect | Status: needs_revision
Priority: Medium | Milestone: Tor: 0.2.8.x-final
Component: Tor | Version: Tor: unspecified
Severity: Normal | Resolution:
Keywords: | Actual Points:
Parent ID: | Points:
Sponsor: |
--------------------+------------------------------------
Comment (by yawning):
I don't mind this in principle.
But if we're *that* scared of OpenSSL's RAND_bytes(), we may as well wrap
our newfangled PRNG construct in the appropriate OpenSSL struct and set it
as the engine so that TLS and all the OpenSSL internal entropy requests
use our thing as well.
--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/17799#comment:3>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online
More information about the tor-bugs
mailing list