From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!not-for-mail From: John Wiegley Newsgroups: gmane.emacs.bugs Subject: bug#22202: 24.5; SECURITY ISSUE -- Emacs Server vulnerable to random number generator attack on Windows systems Date: Tue, 19 Jan 2016 09:03:17 -0800 Message-ID: References: <569BF8F7.3090904@cs.ucla.edu> <83fuxuevs2.fsf@gnu.org> <569D5004.5080701@cs.ucla.edu> <83h9iad26y.fsf@gnu.org> <569DCAD4.30606@cs.ucla.edu> <83y4blbkrj.fsf@gnu.org> Reply-To: John Wiegley NNTP-Posting-Host: plane.gmane.org Mime-Version: 1.0 Content-Type: multipart/signed; boundary="=-=-="; micalg=pgp-sha512; protocol="application/pgp-signature" X-Trace: ger.gmane.org 1453223076 28538 80.91.229.3 (19 Jan 2016 17:04:36 GMT) X-Complaints-To: usenet@ger.gmane.org NNTP-Posting-Date: Tue, 19 Jan 2016 17:04:36 +0000 (UTC) Cc: rcopley@gmail.com, 22202@debbugs.gnu.org, deng@randomsample.de, Paul Eggert To: Eli Zaretskii Original-X-From: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Tue Jan 19 18:04:21 2016 Return-path: Envelope-to: geb-bug-gnu-emacs@m.gmane.org Original-Received: from lists.gnu.org ([208.118.235.17]) by plane.gmane.org with esmtp (Exim 4.69) (envelope-from ) id 1aLZhc-0005Pf-E0 for geb-bug-gnu-emacs@m.gmane.org; Tue, 19 Jan 2016 18:04:20 +0100 Original-Received: from localhost ([::1]:38399 helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1aLZha-0006qm-Nx for geb-bug-gnu-emacs@m.gmane.org; Tue, 19 Jan 2016 12:04:18 -0500 Original-Received: from eggs.gnu.org ([2001:4830:134:3::10]:33077) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1aLZhU-0006q4-0x for bug-gnu-emacs@gnu.org; Tue, 19 Jan 2016 12:04:16 -0500 Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1aLZhK-0000mc-Iy for bug-gnu-emacs@gnu.org; Tue, 19 Jan 2016 12:04:11 -0500 Original-Received: from debbugs.gnu.org ([208.118.235.43]:37483) by eggs.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1aLZhK-0000mY-G0 for bug-gnu-emacs@gnu.org; Tue, 19 Jan 2016 12:04:02 -0500 Original-Received: from Debian-debbugs by debbugs.gnu.org with local (Exim 4.84) (envelope-from ) id 1aLZhK-0004fr-76 for bug-gnu-emacs@gnu.org; Tue, 19 Jan 2016 12:04:02 -0500 X-Loop: help-debbugs@gnu.org Resent-From: John Wiegley Original-Sender: "Debbugs-submit" Resent-CC: bug-gnu-emacs@gnu.org Resent-Date: Tue, 19 Jan 2016 17:04:02 +0000 Resent-Message-ID: Resent-Sender: help-debbugs@gnu.org X-GNU-PR-Message: followup 22202 X-GNU-PR-Package: emacs X-GNU-PR-Keywords: security Original-Received: via spool by 22202-submit@debbugs.gnu.org id=B22202.145322301117921 (code B ref 22202); Tue, 19 Jan 2016 17:04:02 +0000 Original-Received: (at 22202) by debbugs.gnu.org; 19 Jan 2016 17:03:31 +0000 Original-Received: from localhost ([127.0.0.1]:53936 helo=debbugs.gnu.org) by debbugs.gnu.org with esmtp (Exim 4.84) (envelope-from ) id 1aLZgo-0004ey-Jx for submit@debbugs.gnu.org; Tue, 19 Jan 2016 12:03:30 -0500 Original-Received: from mail-pf0-f170.google.com ([209.85.192.170]:36614) by debbugs.gnu.org with esmtp (Exim 4.84) (envelope-from ) id 1aLZgm-0004ej-Ku for 22202@debbugs.gnu.org; Tue, 19 Jan 2016 12:03:29 -0500 Original-Received: by mail-pf0-f170.google.com with SMTP id n128so178251671pfn.3 for <22202@debbugs.gnu.org>; Tue, 19 Jan 2016 09:03:28 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=from:to:cc:subject:in-reply-to:date:message-id:references :user-agent:reply-to:mime-version:content-type; bh=0pZKbAMibBjPnLg2/SiuLFQfqX60pmOcq+5TUCpnhA8=; b=HCjIfZyAzQiaUSu3JMhjnZDgxFjItogxIiRguamTxRs3pwkbHSjnixJMxTva31Wc4j OB2ol9ucMjFouAM+VwNSkJNr37KD+0ypBRxt8vDtiRXIQy7FcVw7rM007TxtGhjBLXm8 rBjl2WU7IPBkXsmygjYHi0TzDcp51VNURSHD7fk1E2jHClPL2Y9054y3i3NW9F+0Vf72 /cuE8II/MpDD2ZsR6U/bH45zhNo4fc2/QAu20MCng/yEWAomf6OQWFuhreSMNJJVae3r 9oosUTuVXtQVBUljmNqZSiYJDQ+gaD2/DBhDS8KME6HtfgxOTvOUVPqn/6IbIqC5he47 JKvA== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:from:to:cc:subject:in-reply-to:date:message-id :references:user-agent:reply-to:mime-version:content-type; bh=0pZKbAMibBjPnLg2/SiuLFQfqX60pmOcq+5TUCpnhA8=; b=cfKzmqcqlOIRBrmYkZJTR4L+b1/uhDCLxLOJAx1SJgEg1JOq2RgaG6LWUvGGMF5BbD pJq1XhcmZii1NTW9RdVbce6C+BdMtgYW3Wx9rT/RSjeKYyzQT71YBKfSnA8Rg9G6jF1p oKv4G5L+fmGpu79SXreCgq1JwUTDHdkEFVx1wWDvfHh5SDesYu61eP1V4WEM+NWehk68 7KwzGpxFs6XpPLE9EXN0mGACK/aFoQK6k7mJf265+IBCGPFJXJVXcKLvufFmxvfr1QWR 5XRRocLG1xITvLRjVsgRLXp/nG8vrqmBJSMsFnHWYNJAygTjpXCpAgogiKN3eAOht+4/ zgnQ== X-Gm-Message-State: ALoCoQnX1CdVJFZHjOsRTVegNTcOJ1P6LDRKWEbZ8wUpbBm2/FFSYEudTzQKx9M/fBkrkKqHen6zGktm3EXnEFoH3blB9B6qgg== X-Received: by 10.98.76.92 with SMTP id z89mr45855131pfa.91.1453223002995; Tue, 19 Jan 2016 09:03:22 -0800 (PST) Original-Received: from Vulcan.local (76-234-68-79.lightspeed.frokca.sbcglobal.net. [76.234.68.79]) by smtp.gmail.com with ESMTPSA id 11sm42690862pfq.87.2016.01.19.09.03.20 (version=TLS1 cipher=AES128-SHA bits=128/128); Tue, 19 Jan 2016 09:03:21 -0800 (PST) X-Google-Original-From: John Wiegley Original-Received: by Vulcan.local (Postfix, from userid 501) id 3A23C124F7A03; Tue, 19 Jan 2016 09:03:20 -0800 (PST) In-Reply-To: <83y4blbkrj.fsf@gnu.org> (Eli Zaretskii's message of "Tue, 19 Jan 2016 18:24:00 +0200") User-Agent: Gnus/5.130014 (Ma Gnus v0.14) Emacs/24.5 (darwin) X-BeenThere: debbugs-submit@debbugs.gnu.org X-Mailman-Version: 2.1.18 Precedence: list X-detected-operating-system: by eggs.gnu.org: GNU/Linux 2.2.x-3.x [generic] X-Received-From: 208.118.235.43 X-BeenThere: bug-gnu-emacs@gnu.org List-Id: "Bug reports for GNU Emacs, the Swiss army knife of text editors" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Original-Sender: bug-gnu-emacs-bounces+geb-bug-gnu-emacs=m.gmane.org@gnu.org Xref: news.gmane.org gmane.emacs.bugs:111750 Archived-At: --=-=-= Content-Type: text/plain Content-Transfer-Encoding: quoted-printable >>>>> Eli Zaretskii writes: > We have what we need; calling gnutls_rnd changes nothing in this regard. > It's just a more complex way of issuing the same system calls. It buys us > nothing in terms of security and performance, while we sustain the price = of > having core functionality that must run at startup crucially depending on= a > 3rd party library we don't control. > John, I feel this decision is wrong and the changes that prefer gnutls_rnd > should be reverted. Maybe I'm the only one who cares, but then Paul is the > only one who felt the need to make that change. I'd like to hear your take > on this, please. From=20what I've read, I agree with you Eli. If we can open /dev/urandom, w= hy do we need a dependency on GnuTLS to effectively do the same thing? What critical feature is GnuTLS buying for us that would make this worthwhi= le, Paul? =2D-=20 John Wiegley GPG fingerprint =3D 4710 CF98 AF9B 327B B80F http://newartisans.com 60E1 46C4 BD1A 7AC1 4BA2 --=-=-= Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQGcBAEBCgAGBQJWnmxVAAoJEMFE2PTxn+YwuxQL/RVu4PyzUzGc+QJEc6X+7/rM q8SSDx+2IoDXiQEeS/NSF+iPd7WekYw7D1T8aaU7O0WUyApUkmVpyH2ZZzxpNvAO r/5orW8M3YIXR7gCcKnQQYBnGLcFIJ0oFTSd3HonHdC3QXMguidqnpvm1x2IXzdd OKLbCm8yfYpInsH3wjTMH6kCaUurZzL9OMFaPVw92D/UqmHol9wJZ7vNdxljDQOe 8qbFcWc6j54K/UxW8wswx3HTSKry0hnJWTmztFwQElRcwgZ+UaGXEkMD1SrK4jWK aLWeN5BiiM2Qq+FdfNrOeS9o2q+B2H6ylidIiG2PGfym58LOjQnKAJ9UPmtmQrcQ ymAr0oLrslC7sLprKTXNx+OaW5Ag1OKLhxD/94DqM+u0E3RDR7dJGplpvMUaaH++ KZr2zEc9WuiiaDFwtbkk+pe4tVAwz5jSzmBQnOXZ7R3230LmnAsyMgib2VL5ueAg n9EpJaN15kjCHcXT5lwhthCHe0DuviJxejLKdnlh7A== =koc5 -----END PGP SIGNATURE----- --=-=-=--