Page MenuHomeFreeBSD
Differential D45995

openssl: Add <sys/random.h> include for getrandom()
ClosedPublic
Actions

Authored by jhb on Jul 17 2024, 1:59 PM.
Tags
None
Referenced Files
F102035851: D45995.diff
Wed, Nov 6, 7:30 PM
Unknown Object (File)
Mon, Oct 21, 7:03 PM
Unknown Object (File)
Tue, Oct 15, 9:50 PM
Unknown Object (File)
Tue, Oct 15, 1:00 AM
Unknown Object (File)
Mon, Oct 14, 7:09 AM
Unknown Object (File)
Sun, Oct 13, 3:13 AM
Unknown Object (File)
Fri, Oct 11, 10:31 PM
Unknown Object (File)
Tue, Oct 8, 9:14 PM
View All 51 Files
Subscribers
imp

Details

Reviewers
kevans
markj
brooks
Commits
rG0244e0a177a6: openssl: Add <sys/random.h> include for getrandom()
Summary

GCC 14 (but not earlier versions) warns about a missing prototype
for getrandom(). Include <sys/random.h> explicitly to bring in the
prototype rather than depending on a nested include. While here,
stop defining sysctl_random() since it is no longer used.

Fixes: 838b6caababb openssl: use getrandom(2) instead of probing for getentropy(2)

Diff Detail

Repository
rG FreeBSD src repository
Lint
Lint Skipped
Unit
Tests Skipped
Build Status
Buildable 58675
Build 55563: arc lint + arc unit

Event Timeline

jhb created this revision.Jul 17 2024, 1:59 PM
Herald added a subscriber: imp. · View Herald TranscriptJul 17 2024, 1:59 PM
jhb requested review of this revision.Jul 17 2024, 1:59 PM
Harbormaster completed remote builds in B58675: Diff 141033.Jul 17 2024, 2:00 PM
jhb added inline comments.Jul 17 2024, 2:05 PM
crypto/openssl/providers/implementations/rands/seeding/rand_unix.c
31

I'm not sure why this is checking for OPENSSL_SYS_UEFI instead of KERN_ARND. That seems like an upstream bug.

No good explanation here:

https://github.com/openssl/openssl/commit/e2e4b784e65eaafb133a7db3d344446c43112d41

This commit seems a bit odd though and suggests we should instead move this down condition down to follow where FreeBSD goes?

https://github.com/openssl/openssl/commit/1fa90bb3a9089f974e9b07f3e76a964bd2da6976

231

If this is upstreamed as-is then this block can be removed as well.

jhb updated this revision to Diff 141035.Jul 17 2024, 2:06 PM

Move UEFI condition

Harbormaster completed remote builds in B58677: Diff 141035.Jul 17 2024, 2:07 PM
kevans added inline comments.Jul 17 2024, 4:13 PM
crypto/openssl/providers/implementations/rands/seeding/rand_unix.c
215

In the change proposed we still use this on FreeBSD versions earlier than 12.x for now: https://github.com/openssl/openssl/pull/24903/files

We should have a follow-up discussion with them about what they want OS support wise, I suspect there's a lot of cruft that can go away from long-since EoL versions.

jhb mentioned this in D46002: openssl: Add <sys/random.h> include for getrandom().Jul 17 2024, 7:15 PM
jhb added a child revision: D46001: stdatomic: Only use clang atomics if __clang__ is defined.
kevans mentioned this in D46167: openssl: declare getrandom(2) before use.Jul 29 2024, 5:39 PM
brooks accepted this revision.Jul 29 2024, 8:33 PM
This revision is now accepted and ready to land.Jul 29 2024, 8:33 PM
imp added a comment.Jul 29 2024, 8:35 PM

https://github.com/freebsd/freebsd-src/pull/1335 has a less good version of this patch.

Closed by commit rG0244e0a177a6: openssl: Add <sys/random.h> include for getrandom() (authored by jhb). · Explain WhyJul 29 2024, 8:39 PM
This revision was automatically updated to reflect the committed changes.
jhb added a commit: rG0244e0a177a6: openssl: Add <sys/random.h> include for getrandom().

Revision Contents
Changeset List

PathSize
crypto/
openssl/
providers/
implementations/
rands/
seeding/
6 lines

Diff 141033

View Options

crypto/openssl/providers/implementations/rands/seeding/rand_unix.c

Loading...