[prev in list] [next in list] [prev in thread] [next in thread] 

List:       busybox-cvs
Subject:    [git commit] seedrng: do not hash lengths, they are very predictable
From:       Denys Vlasenko <vda.linux () googlemail ! com>
Date:       2022-05-01 0:06:20
Message-ID: 20220501001126.52C2784BDC () busybox ! osuosl ! org
[Download RAW message or body]

commit: https://git.busybox.net/busybox/commit/?id=74716580380d609165cc0be1ae37ee52d77243b2
branch: https://git.busybox.net/busybox/commit/?id=refs/heads/master

function                                             old     new   delta
seedrng_main                                         982     930     -52

Signed-off-by: Denys Vlasenko <vda.linux@googlemail.com>
---
 util-linux/seedrng.c | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

diff --git a/util-linux/seedrng.c b/util-linux/seedrng.c
index 3074e9a58..2965f3d47 100644
--- a/util-linux/seedrng.c
+++ b/util-linux/seedrng.c
@@ -151,7 +151,8 @@ static void seed_from_file_if_exists(const char *filename, int dfd, bool credit,
 		 */
 		fsync(dfd);
 
-		sha256_hash(hash, &seed_len, sizeof(seed_len));
+//Length is not random, and taking its address spills variable to stack
+//		sha256_hash(hash, &seed_len, sizeof(seed_len));
 		sha256_hash(hash, seed, seed_len);
 		printf("Seeding %u bits %s crediting\n",
 				(unsigned)seed_len * 8, credit ? "and" : "without");
@@ -220,7 +221,8 @@ int seedrng_main(int argc UNUSED_PARAM, char *argv[])
 
 	new_seed_len = determine_optimal_seed_len();
 	new_seed_creditable = read_new_seed(new_seed, new_seed_len);
-	sha256_hash(&hash, &new_seed_len, sizeof(new_seed_len));
+//Length is not random, and taking its address spills variable to stack
+//	sha256_hash(&hash, &new_seed_len, sizeof(new_seed_len));
 	sha256_hash(&hash, new_seed, new_seed_len);
 	sha256_end(&hash, new_seed + new_seed_len - SHA256_OUTSIZE);
 
@@ -230,7 +232,7 @@ int seedrng_main(int argc UNUSED_PARAM, char *argv[])
 	xwrite(fd, new_seed, new_seed_len);
 	if (new_seed_creditable) {
 		/* More paranoia when we create a file which we believe contains
-		 * genuine entropy: make sure disk is not full, quota was't esceeded, etc:
+		 * genuine entropy: make sure disk is not full, quota was't exceeded, etc:
 		 */
 		if (fsync(fd) < 0)
 			bb_perror_msg_and_die("can't write '%s'", NON_CREDITABLE_SEED_NAME);
_______________________________________________
busybox-cvs mailing list
busybox-cvs@busybox.net
http://lists.busybox.net/mailman/listinfo/busybox-cvs
[prev in list] [next in list] [prev in thread] [next in thread]

Configure | About | News | Add a list | Sponsored by KoreLogic