[Botan-devel] 1.8.1 fixes PKCS #8 memory leak, Valgrind warning, botan-config bug

Rickard Bondesson Rickard.Bondesson at iis.se
Mon Jan 26 09:16:27 EST 2009


> - On 32-bit Linux systems (and perhaps elsewhere), Valgrind would warn
>   that uninitialized memory was read, and unfortunately this would
>   taint the PRNG internal state, which would then cause all PRNG
>   outputs to also be considered tainted by Valgrind. This made
>   Valgrind's warnings pretty useless on such systems.

Great! This fix removed many warnings, but I still get a warning when I want to reseed my RNG.

Output from Valgrind:

==15249== Use of uninitialised value of size 4
==15249==    at 0x485B5FF: Botan::AES::enc(unsigned char const*, unsigned char*) const (in /usr/local/lib/libbotan-1.8.1.so)
==15249==    by 0x4A5BE0A: Botan::ANSI_X931_RNG::update_buffer() (in /usr/local/lib/libbotan-1.8.1.so)
==15249==    by 0x4A5C31E: Botan::ANSI_X931_RNG::reseed() (in /usr/local/lib/libbotan-1.8.1.so)
==15249==    by 0x4888393: Botan::AutoSeeded_RNG::reseed() (in /usr/local/lib/libbotan-1.8.1.so)
==15249==    by 0x47E293C: C_SeedRandom (main.cpp:2226)
==15249==    by 0x804F41F: (within /usr/bin/pkcs11-tool)
==15249==    by 0x8051679: (within /usr/bin/pkcs11-tool)
==15249==    by 0x428044F: (below main) (in /lib/tls/i686/cmov/libc-2.7.so)

// Rickard
-------------- next part --------------
A non-text attachment was scrubbed...
Name: PGP.sig
Type: application/pgp-signature
Size: 475 bytes
Desc: not available
URL: <http://lists.randombit.net/pipermail/botan-devel/attachments/20090126/610ae791/attachment.sig>


More information about the botan-devel mailing list