libssh -- PRNG state reuse on forking servers

ID F8C88D50-5FB3-11E4-81BD-5453ED2E2B49
Type freebsd
Reporter FreeBSD
Modified 2014-03-05T00:00:00


Aris Adamantiadis reports:

When accepting a new connection, the server forks and the child process handles the request. The RAND_bytes() function of openssl doesn't reset its state after the fork, but simply adds the current process id (getpid) to the PRNG state, which is not guaranteed to be unique.