On 9 November 2015 14:16:56 GMT+00:00, Jonas Smedegaard <[email protected]> wrote:
>Quoting Daniel Pocock (2015-11-09 14:32:51)
>> As described in #770659, Chromium is having problems with the
>standard 
>> version of libsrtp0 on jessie.
>
>The problem it has is that it a) rely on libSRTP to provide randomness,
>
>and b) block the underlying calls done internally in libSRTP to get 
>randomness from other sources.
>
>> Users have been disabling the sandbox in Chromium to work around this
>
>> issue, hence the security tag has been used.
>
>The very use of libSRTP is a security issue: libSRTP does *not* provide
>
>cryptographically secure randomness, and next major release of libSRTP 
>will _stop_ offer that unreliable randomness API.
>
>Therefore I believe the way forward with this is to get Chromium to get
>
>randomness via some other API than the bad libSRTP approach used now, 
>and then when that is in place try backport the proper approach to the 
>Chromium in Debian stable.
>
>I do not like to change the libSRTP code in Debian stable.  The patch 
>itself is tiny, but just as the very Chromium issue demonstrates, can 
>nevertheless have big consequences.
>
>


The patch could be adapted so it only tries the alternative (fopen) in 
situations where open fails.

Do you think this would reduce risk?

I would prefer to see Chromium provide a more definitive solution too, but it 
has been like this for a long time now and because it is silently failing 
without explanation it is one of those things that causes user frustration and 
can be wrongly perceived as a Debian fault.

Reply via email to