From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!not-for-mail From: Richard Copley Newsgroups: gmane.emacs.bugs Subject: bug#22202: 24.5; SECURITY ISSUE -- Emacs Server vulnerable to random number generator attack on Windows systems Date: Thu, 31 Dec 2015 20:44:18 +0000 Message-ID: References: <83lh8ddy45.fsf@gnu.org> <8760zh81oo.fsf@isaac.fritz.box> <83mvssc4ix.fsf@gnu.org> <1451581478.15612.5.camel@gmail.com> <834meybf2v.fsf@gnu.org> <8337uibcm5.fsf@gnu.org> NNTP-Posting-Host: plane.gmane.org Mime-Version: 1.0 Content-Type: text/plain; charset=UTF-8 X-Trace: ger.gmane.org 1451696000 3038 80.91.229.3 (2 Jan 2016 00:53:20 GMT) X-Complaints-To: usenet@ger.gmane.org NNTP-Posting-Date: Sat, 2 Jan 2016 00:53:20 +0000 (UTC) Cc: 22202@debbugs.gnu.org, Demetri Obenour , David Engster To: Eli Zaretskii Original-X-From: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Sat Jan 02 01:53:12 2016 Return-path: Envelope-to: geb-bug-gnu-emacs@m.gmane.org Original-Received: from lists.gnu.org ([208.118.235.17]) by plane.gmane.org with esmtp (Exim 4.69) (envelope-from ) id 1aFART-0007K2-LR for geb-bug-gnu-emacs@m.gmane.org; Sat, 02 Jan 2016 01:53:11 +0100 Original-Received: from localhost ([::1]:37119 helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1aFARS-0006A9-PQ for geb-bug-gnu-emacs@m.gmane.org; Fri, 01 Jan 2016 19:53:10 -0500 Original-Received: from eggs.gnu.org ([2001:4830:134:3::10]:44380) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1aFARO-00069z-E1 for bug-gnu-emacs@gnu.org; Fri, 01 Jan 2016 19:53:07 -0500 Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1aFARK-0006Fx-Dh for bug-gnu-emacs@gnu.org; Fri, 01 Jan 2016 19:53:06 -0500 Original-Received: from debbugs.gnu.org ([208.118.235.43]:45795) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1aFARK-0006Ft-9n for bug-gnu-emacs@gnu.org; Fri, 01 Jan 2016 19:53:02 -0500 Original-Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84) (envelope-from ) id 1aFARK-0003No-6J for bug-gnu-emacs@gnu.org; Fri, 01 Jan 2016 19:53:02 -0500 X-Loop: help-debbugs@gnu.org Resent-From: Richard Copley Original-Sender: "Debbugs-submit" Resent-CC: bug-gnu-emacs@gnu.org Resent-Date: Sat, 02 Jan 2016 00:53:02 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 22202 X-GNU-PR-Package: emacs X-GNU-PR-Keywords: security Original-Received: via spool by 22202-submit@debbugs.gnu.org id=B22202.145169594312950 (code B ref 22202); Sat, 02 Jan 2016 00:53:02 +0000 Original-Received: (at 22202) by debbugs.gnu.org; 2 Jan 2016 00:52:23 +0000 Original-Received: from localhost ([127.0.0.1]:34014 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84) (envelope-from ) id 1aFAQg-0003Mo-Rs for submit@debbugs.gnu.org; Fri, 01 Jan 2016 19:52:23 -0500 Original-Received: from mail-yk0-f176.google.com ([209.85.160.176]:35485) by debbugs.gnu.org with esmtp (Exim 4.84) (envelope-from ) id 1aFAQf-0003MX-1V for 22202@debbugs.gnu.org; Fri, 01 Jan 2016 19:52:21 -0500 Original-Received: by mail-yk0-f176.google.com with SMTP id x67so204219564ykd.2 for <22202@debbugs.gnu.org>; Fri, 01 Jan 2016 16:52:20 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc:content-type; bh=uIy0wFJD6/NXCxf1M58UocZdHs3vXDr6mND7KlIGArk=; b=bPZRT8b3gbCSqXN8DfxnTq8xvooUSx9f8bUq8uTxAGs+nvw0JRbCFxy+6TRW4ibnJ3 Lib8+zOR5177mY7aeNO3ttReX9dYG19/ScmpM9A4Pvaw3ToYxObDU+GRWNJqGo3WuuAG sx3NcBa7h8tYIkA+cXHdM0rhv9AZJIYjR7Oi3KL315Tgo932stfBhFpQyRTr8lMD8tOF tuGM9nDMuvbQBRUqrI+Vtn/QiD9yocvHSThT/JSQG9zyddmzdLyUBBmI44G8dr2Sct+t 0xPo8J55dMlSMu2xjEvPCvx4gj7rxYOKreeh1TTDI8VqhmuDa/yQUT4BZN+LpKyeGGtr jGGg== X-Received: by 10.129.157.74 with SMTP id u71mr54913346ywg.83.1451594688237; Thu, 31 Dec 2015 12:44:48 -0800 (PST) Original-Received: by 10.37.207.214 with HTTP; Thu, 31 Dec 2015 12:44:18 -0800 (PST) In-Reply-To: <8337uibcm5.fsf@gnu.org> X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.2.x-3.x [generic] X-Received-From: 208.118.235.43 X-BeenThere: bug-gnu-emacs@gnu.org List-Id: "Bug reports for GNU Emacs, the Swiss army knife of text editors" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Original-Sender: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Xref: news.gmane.org gmane.emacs.bugs:111070 Archived-At: >> >> What Demetri has just described is what I would do. >> > >> >Now I'm confused: do what? >> >> As I understand it: Provide a function callable from lisp that returns >> a cryptographically secure sequence of random bytes, of a specified >> length. Use that function to generate the server secret. > > That's what my patch does. A separate function from "random". >> >We still need to support 'random' with an >> >argument, so we cannot get rid of seeding a PRNG with a known value. >> >And I didn't want to remove srandom. >> >> Given the above, we could leave "random", etc., as they are, or we >> could use a better PRNG and/or seed with system entropy. It would >> no longer be tied up with this issue report. > > Patches welcome, as I said already. You asked me a question.