Gitiles
Code Review Sign In
gerrit.openbmc.org / openbmc / phosphor-net-ipmid / 8977d12a4f6d647958b50003c11e396fadffde51
commit8977d12a4f6d647958b50003c11e396fadffde51[log] [tgz]
authorVernon Mauery <vernon.mauery@linux.intel.com>Wed Oct 24 14:02:16 2018 -0700
committerTom Joseph <tomjoseph@in.ibm.com>Wed Nov 14 14:59:52 2018 +0000
treed6ea56c718265ed0e908fc21e3af694fcb5e6510
parent07e5b28c142abc0d2f1a94d6ce9ef21446226f5e [diff]
netipmid: use libcrypto prng instead of insecure std::rand

std::rand is insecure. Add a simple openssl-crypto wrapper for a similar
interface that can replace it.

Tested-by: Run ipmitool six times in parallel to see that five
           independent sessions are created and the sixth one causes the
           BMC to dump the session list on the console. Note that the
           session numbers are still random.

Change-Id: I0b387f1343abefc45be0d62cf9af45fbd5563047
Signed-off-by: Vernon Mauery <vernon.mauery@linux.intel.com>
3 files changed
tree: d6ea56c718265ed0e908fc21e3af694fcb5e6510
  1. command/
  2. sol/
  3. test/
  4. .clang-format
  5. .gitignore
  6. auth_algo.cpp
  7. auth_algo.hpp
  8. bootstrap.sh
  9. comm_module.cpp
  10. comm_module.hpp
  11. command_table.cpp
  12. command_table.hpp
  13. configure.ac
  14. crypt_algo.cpp
  15. crypt_algo.hpp
  16. endian.hpp
  17. integrity_algo.cpp
  18. integrity_algo.hpp
  19. LICENSE
  20. main.cpp
  21. main.hpp
  22. MAINTAINERS
  23. Makefile.am
  24. message.hpp
  25. message_handler.cpp
  26. message_handler.hpp
  27. message_parsers.cpp
  28. message_parsers.hpp
  29. prng.hpp
  30. provider_registration.cpp
  31. provider_registration.hpp
  32. README.md
  33. rmcp.hpp
  34. sd_event_loop.cpp
  35. sd_event_loop.hpp
  36. session.hpp
  37. sessions_manager.cpp
  38. sessions_manager.hpp
  39. settings.cpp
  40. settings.hpp
  41. socket_channel.cpp
  42. socket_channel.hpp
  43. sol_module.cpp
  44. sol_module.hpp
README.md

To Build

To build this package, do the following steps:

    1. ./bootstrap.sh
    2. ./configure ${CONFIGURE_FLAGS}
    3. make

To clean the repository run `./bootstrap.sh clean`.