RT/krbdev.mit.edu: Ticket #5666 read_entropy_from_device on partial read will not fill buffer

RT/krbdev.mit.edu: Ticket #5666 read_entropy_from_device on partial read will not fill buffer

Signed in as guest.
[Logout]

[Home]

[Search]

[Configuration]

[Display]

[History]

[Basics]

[Dates]

[People]

[Links]

[Jumbo]

The Basics

Id
5666

Status
resolved

Worked
0 min

Priority
0/0

Queue
krb5

Keyword Selections

Component	krb5-libs
Version_reported
Version_Fixed	1.6.3
Target_Version	1.6.3
Tags	pullup

Relationships

Depends on:

Depended on by:

Parents:

Children:

Refers to:

Referred to by:

Dates

Created:	Mon Aug 20 10:50:46 2007
Starts:	Not set
Started:	Mon Aug 20 10:50:49 2007
Last Contact:	Fri Aug 31 17:38:36 2007
Due:	Not set
Updated:	Fri Aug 31 17:38:36 2007 by tlyu

People

Owner
epeisach
Requestors
epeisach@mit.edu
Cc

AdminCc

More about Ezra Peisach

Comments about this user:
No comment entered about this user
This user's 25 highest priority tickets:

467: AFS salt type array overflow problems (new)
879: krb4 services will not properly function if there are more than one des3 key in the keytab (new)
214: There is no special error for a missing keytab file (open)
1261: Creation of shared libraries ignore --with-ldopts (new)
2355: krb5_change_set_password should either have prototype of be declared static (new)
2357: gss_krb5int_unseal_token_v3() could use better call signature (open)
3195: asn.1 encoding of kvno does not follow rfc4120 (new)
3196: asn.1 encoding of nonce differs from rfc4120 (signedness) (new)
3821: krb5-1.5 alpha - should library version numbers be bumped? (new)
3838: static-only builds no longer possible (open)
4489: IRIX build w/ GCC fails to use export list (new)
5130: Race condition in utils/support/threads.c if one thread calls exit.... (new)
5693: Problems using Intel C compiler on trunk builds (new)
6369: lib/rpc should have way to register with secure rpcbind using unix domain socket (new)
6453: remove dead code (open)

History

Display mode: [Brief headers] [Full headers]

Mon Aug 20 10:50:46 2007	epeisach - Ticket created
From: epeisach@mit.edu Subject: SVN Commit read_entropy_from_device() will loop in read until the desired number of bytes are read from the device (/dev/random, /dev/urandom). I have observed that for /dev/random, if there is not enough bits available for reading - it will return a partial read. The code would loop in this case, but never advance the location to place the new bytes - hence the start of the buffer would be filled again - leaving the tail end as stack garbage. Commit By: epeisach Revision: 19845 Changed Files: U trunk/src/lib/crypto/prng.c		Download (untitled) 528b
Mon Aug 20 10:50:49 2007	epeisach - Requestor epeisach@mit.edu added
Mon Aug 20 10:50:49 2007	epeisach - Status changed from new to resolved
Mon Aug 20 10:50:49 2007	epeisach - Tags pullup added
Fri Aug 31 17:17:23 2007	tlyu - Component krb5-libs added
Fri Aug 31 17:17:24 2007	tlyu - Target_Version 1.6.3 added
Fri Aug 31 17:38:33 2007	tlyu - Version_Fixed 1.6.3 added
Fri Aug 31 17:38:33 2007	tlyu - Correspondence added
From: tlyu@mit.edu Subject: SVN Commit pull up r19845 from trunk r19845@cathode-dark-space: epeisach \| 2007-08-20 10:50:41 -0400 ticket: new subject: read_entropy_from_device on partial read will not fill buffer tags: pullup read_entropy_from_device() will loop in read until the desired number of bytes are read from the device (/dev/random, /dev/urandom). I have observed that for /dev/random, if there is not enough bits available for reading - it will return a partial read. The code would loop in this case, but never advance the location to place the new bytes - hence the start of the buffer would be filled again - leaving the tail end as stack garbage. Commit By: tlyu Revision: 19906 Changed Files: _U branches/krb5-1-6/ U branches/krb5-1-6/src/lib/crypto/prng.c		Download (untitled) 765b