wbrawner/openssl
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
openssl/doc
History
Matt Caswell 302d38e3f7 Deprecate RAND_pseudo_bytes 
The justification for RAND_pseudo_bytes is somewhat dubious, and the reality
is that it is frequently being misused. RAND_bytes and RAND_pseudo_bytes in
the default implementation both end up calling ssleay_rand_bytes. Both may
return -1 in an error condition. If there is insufficient entropy then
both will return 0, but RAND_bytes will additionally add an error to the
error queue. They both return 1 on success.
Therefore the fundamental difference between the two is that one will add an
error to the error queue with insufficient entory whilst the other will not.
Frequently there are constructions of this form:

if(RAND_pseudo_bytes(...) <= 1)
	goto err;

In the above form insufficient entropy is treated as an error anyway, so
RAND_bytes is probably the better form to use.

This form is also seen:
if(!RAND_pseudo_bytes(...))
	goto err;

This is technically not correct at all since a -1 return value is
incorrectly handled - but this form will also treat insufficient entropy as
an error.

Within libssl it is required that you have correctly seeded your entropy
pool and so there seems little benefit in using RAND_pseudo_bytes.
Similarly in libcrypto many operations also require a correctly seeded
entropy pool and so in most interesting cases you would be better off
using RAND_bytes anyway. There is a significant risk of RAND_pseudo_bytes
being incorrectly used in scenarios where security can be compromised by
insufficient entropy.

If you are not using the default implementation, then most engines use the
same function to implement RAND_bytes and RAND_pseudo_bytes in any case.

Given its misuse, limited benefit, and potential to compromise security,
RAND_pseudo_bytes has been deprecated.

Reviewed-by: Richard Levitte <levitte@openssl.org>
2015-03-25 12:38:19 +00:00
..
apps Configuration file examples. 2015-03-24 12:22:52 +00:00
crypto Deprecate RAND_pseudo_bytes 2015-03-25 12:38:19 +00:00
HOWTO Improves certificates HOWTO 2014-12-22 16:23:24 +01:00
ssl Removed support for SSL_OP_NETSCAPE_DEMO_CIPHER_CHANGE_BUG. Also removed 2015-02-26 23:22:46 +00:00
fingerprints.txt Cleanup old doc/*; remove CHANGES.SSLeay 2015-01-22 12:38:57 -05:00
openssl_button.gif Added the new `Includes OpenSSL Cryptography Software' button as 1999-03-04 12:55:42 +00:00
openssl_button.html Added the new `Includes OpenSSL Cryptography Software' button as 1999-03-04 12:55:42 +00:00
README Cleanup old doc/*; remove CHANGES.SSLeay 2015-01-22 12:38:57 -05:00
standards.txt GitHub 237: Use https for IETF links 2015-03-07 21:24:40 -05:00

README 

 apps/openssl.pod .... Documentation of OpenSSL `openssl' command
 crypto/crypto.pod ... Documentation of OpenSSL crypto.h (libcrypto)
 ssl/ssl.pod ......... Documentation of OpenSSL ssl.h (libssl)
 standards.txt ....... Pointers to standards, RFCs or internet drafts
                       that are related to OpenSSL.  Incomplete.

 HTML versions are on https://www.openssl.org/docs