diff options
Diffstat (limited to 'main/openssl/openssl-disable-rdrand-default.patch')
-rw-r--r-- | main/openssl/openssl-disable-rdrand-default.patch | 23 |
1 files changed, 23 insertions, 0 deletions
diff --git a/main/openssl/openssl-disable-rdrand-default.patch b/main/openssl/openssl-disable-rdrand-default.patch new file mode 100644 index 000000000..d9a40d294 --- /dev/null +++ b/main/openssl/openssl-disable-rdrand-default.patch @@ -0,0 +1,23 @@ +http://seclists.org/fulldisclosure/2013/Dec/99 + +From: Dr. Stephen Henson <steve@openssl.org> +Date: Wed, 11 Dec 2013 14:45:12 +0000 (+0000) +Subject: Don't use rdrand engine as default unless explicitly requested. +X-Git-Url: http://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff_plain;h=8a1956f3eac8b164f8c741ff1a259008bab3bac1 + +Don't use rdrand engine as default unless explicitly requested. +(cherry picked from commit 16898401bd47a153fbf799127ff57fdcfcbd324f) +--- + +diff --git a/crypto/engine/eng_rdrand.c b/crypto/engine/eng_rdrand.c +index a9ba5ae..4e9e91d 100644 +--- a/crypto/engine/eng_rdrand.c ++++ b/crypto/engine/eng_rdrand.c +@@ -104,6 +104,7 @@ static int bind_helper(ENGINE *e) + { + if (!ENGINE_set_id(e, engine_e_rdrand_id) || + !ENGINE_set_name(e, engine_e_rdrand_name) || ++ !ENGINE_set_flags(e, ENGINE_FLAGS_NO_REGISTER_ALL) || + !ENGINE_set_init_function(e, rdrand_init) || + !ENGINE_set_RAND(e, &rdrand_meth) ) + return 0; |