[issue20952] OpenSSL and RDRAND

2021-10-21 Thread Christian Heimes 


Christian Heimes  added the comment:

Thankfully RDRAND is no longer a concern for us. All OpenSSL versions in 
official Python.org installers and supported by recent Python versions have a 
strong and fork-safe RNG.

--
resolution:  -> fixed
stage:  -> resolved
status: open -> closed

___
Python tracker 

___
___
Python-bugs-list mailing list
Unsubscribe: 
https://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com

[issue20952] OpenSSL and RDRAND

2014-03-16 Thread Antoine Pitrou 

Antoine Pitrou added the comment:

Apart from our Windows binaries, this doesn't seem much of a Python issue. 
Python normally links with whatever the system OpenSSL is.

--
nosy: +loewis

___
Python tracker 

___
___
Python-bugs-list mailing list
Unsubscribe: 
https://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com

[issue20952] OpenSSL and RDRAND

2014-03-16 Thread R. David Murray 

Changes by R. David Murray :


--
nosy: +christian.heimes, pitrou

___
Python tracker 

___
___
Python-bugs-list mailing list
Unsubscribe: 
https://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com

[issue20952] OpenSSL and RDRAND

2014-03-16 Thread Jeffrey Walton 

New submission from Jeffrey Walton:

Some versions of OpenSSL use the RDRAND engine by default. The versions include 
openssl-1.0.1-beta1 through openssl-1.0.1f.

RDRAND has taken some criticism because its essentially unaudited and it could 
be spiked like the Dual-EC generator 
(http://blog.cryptographyengineering.com/2013/09/the-many-flaws-of-dualecdrbg.html).

If the RDRAND engine is in effect, then the application and the library 
(internally) will be using the generator. But some some folks don't want to use 
an unaudited generator.

I'm not sure what the best action is to take. For reading on ways to disable 
the RDRAND engine, see http://seclists.org/fulldisclosure/2013/Dec/142.

--
components: Extension Modules
messages: 213769
nosy: Jeffrey.Walton
priority: normal
severity: normal
status: open
title: OpenSSL and RDRAND

___
Python tracker 

___
___
Python-bugs-list mailing list
Unsubscribe: 
https://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com