wbrawner/openssl
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
openssl/crypto/rand
History
Dr. Stephen Henson 5be1ae28ef Return if ssleay_rand_add called with zero num. 
Treat a zero length passed to ssleay_rand_add a no op: the existing logic
zeroes the md value which is very bad. OpenSSL itself never does this
internally and the actual call doesn't make sense as it would be passing
zero bytes of entropy.

Thanks to Marcus Meissner <meissner@suse.de> for reporting this bug.
2014-04-07 17:53:31 +01:00
..
.cvsignore Add emacs cache files to .cvsignore. 2005-04-11 14:17:07 +00:00
Makefile make update 2014-01-06 13:33:27 +00:00
md_rand.c Return if ssleay_rand_add called with zero num. 2014-04-07 17:53:31 +01:00
rand.h Disable Dual EC DRBG. 2013-09-22 18:24:12 +01:00
rand_egd.c Revert commit #17603, it should have been part of #17617. 2008-11-12 07:27:36 +00:00
rand_err.c Disable Dual EC DRBG. 2013-09-22 18:24:12 +01:00
rand_lcl.h Like MD_Init, MD now must include a NULL engine pointer in its definition. 2001-10-25 08:53:54 +00:00
rand_lib.c Disable Dual EC DRBG. 2013-09-22 18:24:12 +01:00
rand_nw.c rand_nw.c: compensate for gcc bug (using %edx instead of %eax at -O3) 2010-07-08 09:15:49 +00:00
rand_os2.c PR: 1903 2009-04-22 16:21:20 +00:00
rand_unix.c PR: 2563 2011-12-19 17:02:35 +00:00
rand_vms.c Apply all the changes submitted by Steven M. Schweda <sms@antinode.info> 2011-03-19 09:47:47 +00:00
rand_win.c Avoid Windows 8 Getversion deprecated errors. 2014-02-25 13:42:25 +00:00
randfile.c Reduce version skew. 2012-06-08 09:18:47 +00:00
randtest.c fix warnings when building openssl with the following compiler options: 2005-08-28 22:49:57 +00:00