Red Hat Bugzilla – Bug 111910
pseudo random generation is not secure
Last modified: 2007-11-30 17:06:59 EST
Description of problem:
symptom: z90crypt_read returns predictable numbers
problem: each call to z90crypt_read requires additional entropy
solution: in s390_ksyms, externalize the function urandom_read in
z90main, replace the current pseudo-random number generation code
with a call to urandom-read
We do NOT allow z90crypt_read at all. This is not applicable to RHEL 3.
I would like Ingolf to confirm in case I misunderstand something in the
report description, so I am not closing this but only NEEDINFO-ing
while he investigates.
Need some more info from you by end of business on 1/16/04 if possible.
This problem is fixed in z90crypt that you have in Update 1. We can
close this bugzilla, if you provide hw crypto support in U1.
I suppose we can skip the MODIFIED state and close.
Consider this modified in 2.4.21-7.EL for tracking.
This was fixed in RHEL3 U1.