Commit ID: 10053C790780525F1B9
CVSROOT: /cvs
Module name: src
Changes by: [email protected] 2014/07/17 09:02:58 UTC
Modified files:
lib/libssl/src/crypto/rand: mbsdrand.c
Log message:
avoid catastrophic PRNG failure by getpid wrapping
cf. http://www.tedunangst.com/flak/post/wrapping-pids-for-fun-and-profit
do not use pthread_atfork, that’s unsafe (and evil anyway)
but until our arc4random uses MAP_INHERIT_ZERO we must do this
(and maybe even then it’s a good idea)
but I agree with tedu that this is never seen in practice
To generate a diff of this changeset, execute the following commands:
cvs -R rdiff -kk -upr1.4 -r1.5 src/lib/libssl/src/crypto/rand/mbsdrand.c
