summaryrefslogtreecommitdiffstats
path: root/main/openssl/openssl-disable-rdrand-default.patch
diff options
context:
space:
mode:
Diffstat (limited to 'main/openssl/openssl-disable-rdrand-default.patch')
-rw-r--r--main/openssl/openssl-disable-rdrand-default.patch23
1 files changed, 23 insertions, 0 deletions
diff --git a/main/openssl/openssl-disable-rdrand-default.patch b/main/openssl/openssl-disable-rdrand-default.patch
new file mode 100644
index 000000000..d9a40d294
--- /dev/null
+++ b/main/openssl/openssl-disable-rdrand-default.patch
@@ -0,0 +1,23 @@
+http://seclists.org/fulldisclosure/2013/Dec/99
+
+From: Dr. Stephen Henson <steve@openssl.org>
+Date: Wed, 11 Dec 2013 14:45:12 +0000 (+0000)
+Subject: Don't use rdrand engine as default unless explicitly requested.
+X-Git-Url: http://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff_plain;h=8a1956f3eac8b164f8c741ff1a259008bab3bac1
+
+Don't use rdrand engine as default unless explicitly requested.
+(cherry picked from commit 16898401bd47a153fbf799127ff57fdcfcbd324f)
+---
+
+diff --git a/crypto/engine/eng_rdrand.c b/crypto/engine/eng_rdrand.c
+index a9ba5ae..4e9e91d 100644
+--- a/crypto/engine/eng_rdrand.c
++++ b/crypto/engine/eng_rdrand.c
+@@ -104,6 +104,7 @@ static int bind_helper(ENGINE *e)
+ {
+ if (!ENGINE_set_id(e, engine_e_rdrand_id) ||
+ !ENGINE_set_name(e, engine_e_rdrand_name) ||
++ !ENGINE_set_flags(e, ENGINE_FLAGS_NO_REGISTER_ALL) ||
+ !ENGINE_set_init_function(e, rdrand_init) ||
+ !ENGINE_set_RAND(e, &rdrand_meth) )
+ return 0;
generated by cgit v1.2.3 (git 2.25.1) at 2024-09-25 08:57:50 +0000