[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-talk] Help testing patch on SandyBridge/IvyBridge? Force disable use of RDRAND in OpenSSL when HardwareAccel is enabled

To: "tor-talk@xxxxxxxxxxxxxxxxxxxx" <tor-talk@xxxxxxxxxxxxxxxxxxxx>
Subject: Re: [tor-talk] Help testing patch on SandyBridge/IvyBridge? Force disable use of RDRAND in OpenSSL when HardwareAccel is enabled
From: Nick Mathewson <nickm@xxxxxxxxxxxx>
Date: Wed, 18 Dec 2013 12:03:58 -0500
Delivered-to: archiver@xxxxxxxx
Delivery-date: Wed, 18 Dec 2013 12:11:48 -0500
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date:message-id:subject :from:to:content-type; bh=hxufZcwkPv0b5AGsaoKaV2+yLnJ+d/jZ82vpaWY+xvg=; b=t+8kaF9xXvghHdfBhnVG8UeyeItEg5qROH6xOsvrWjeW49JdGCKouKIw7oth0E6QF/ /6lvjgcsFWVOWpTntnobl4QjhBeDG7WMv3XuQRK/yzUz71JYy6wVp5RPHJs+mVrsjOdw Fn2uKcKxVLXXeczaE+clg+FU/RmKlXMe+AAScUua8zsWBjAWnBy1FvYuyQktSZI6GWvQ 88zOeyEZ4MCdfxUvRkLf7HBHrKxKvab7it0vc7L6M9n2+kxIL7/t3NoGSXfu+N1DfYio QmeJvjzxi67GPxoBN/W6o/GoI2R/yrgfG77AOzRsPziG2W9cz3MhMwEWEFTNnKoxehgs aREQ==
In-reply-to: <CAJVRA1Se-pHxXtOC+U9ToLyz2gfxrxnmqaoOaxv1rpd9jknqhg@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-talk/>
List-help: <mailto:tor-talk-request@lists.torproject.org?subject=help>
List-id: "all discussion about theory, design, and development of Onion Routing" <tor-talk.lists.torproject.org>
List-post: <mailto:tor-talk@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-talk>, <mailto:tor-talk-request@lists.torproject.org?subject=unsubscribe>
References: <CAJVRA1Se-pHxXtOC+U9ToLyz2gfxrxnmqaoOaxv1rpd9jknqhg@xxxxxxxxxxxxxx>
Reply-to: tor-talk@xxxxxxxxxxxxxxxxxxxx
Sender: "tor-talk" <tor-talk-bounces@xxxxxxxxxxxxxxxxxxxx>

On Sat, Dec 14, 2013 at 9:14 AM, coderman <coderman@xxxxxxxxx> wrote:
> this is logged as trac ticket:
>   https://trac.torproject.org/projects/tor/ticket/10402

I'm fairly sure that patch doesn't actually do anything; see comments
on #10402 (URL above) for my investigation.

Lessons I learned: Do not assume that you have really replaced an
undesirable function until you've investigated with a debugger.  Do
not assume you were using the undesirable function in the first place
until you've investigated with a debugger.  Above all, do not assume
that you understand how OpenSSL works until you have investigated with
a debugger, the source code, and a pot of coffee.

There is a probably fixed patch ready for testing at that URL that
should apply cleanly to 0.2.4. I've made a quick and dirty 0.2.5
version for people to use as well, if they like.

These could use review and testing, of course.  Comments at the above
URL if possible please.

yrs,
-- 
Nick
-- 
tor-talk mailing list - tor-talk@xxxxxxxxxxxxxxxxxxxx
To unsubscribe or change other settings go to
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-talk

Follow-Ups:
- Re: [tor-talk] Help testing patch on SandyBridge/IvyBridge? Force disable use of RDRAND in OpenSSL when HardwareAccel is enabled
  - From: coderman

References:
- [tor-talk] Help testing patch on SandyBridge/IvyBridge? Force disable use of RDRAND in OpenSSL when HardwareAccel is enabled
  - From: coderman

Prev by Author: Re: [tor-talk] Avg packaged cell fullness - notice in logs
Next by Author: Re: [tor-talk] Improved HS key management
Previous by thread: Re: [tor-talk] Help testing patch on SandyBridge/IvyBridge? Force disable use of RDRAND in OpenSSL when HardwareAccel is enabled
Next by thread: Re: [tor-talk] Help testing patch on SandyBridge/IvyBridge? Force disable use of RDRAND in OpenSSL when HardwareAccel is enabled
Index(es):
- Author
- Thread