Message 69853 - Python tracker

➜

This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author	kristjan.jonsson
Recipients	kristjan.jonsson
Date	2008-07-16.22:59:40
SpamBayes Score	3.3961135e-06
Marked as misclassified	No
Message-id	<1216249182.9.0.569778250674.issue3387@psf.upfronthosting.co.za>
In-reply-to

Content
The CryptGenRandomBytes uses whatever data is already in the buffer as seed for the output. So, the buffer is effectively an in/out buffer. Now, since we are generating random data anyway, the fact that we are using an undefined seed for the data shouldn't matter. However, this does create a bunch of false positives for analysis tools such as Purify, that track the copying and usage of uninitialized data. An easy patch is to clear the buffer before submitting it to CryptGenRandomBytes, and is attached.

The CryptGenRandomBytes uses whatever data is already in the buffer as 
seed for the output.  So, the buffer is effectively an in/out buffer.  
Now, since we are generating random data anyway, the fact that we are 
using an undefined seed for the data shouldn't matter.  However, this 
does create a bunch of false positives for analysis tools such as 
Purify, that track the copying and usage of uninitialized data.
An easy patch is to clear the buffer before submitting it to 
CryptGenRandomBytes, and is attached.

History
Date	User	Action	Args
2008-07-16 22:59:43	kristjan.jonsson	set	spambayes_score: 3.39611e-06 -> 3.3961135e-06 recipients: + kristjan.jonsson
2008-07-16 22:59:42	kristjan.jonsson	set	spambayes_score: 3.39611e-06 -> 3.39611e-06 messageid: <1216249182.9.0.569778250674.issue3387@psf.upfronthosting.co.za>
2008-07-16 22:59:41	kristjan.jonsson	link	issue3387 messages
2008-07-16 22:59:41	kristjan.jonsson	create