Commit 4bdab257 authored by Pauli's avatar Pauli
Browse files

Avoid overflowing FDSET when using select(2). 



There is a problem in the rand_unix.c code when the random seed fd is greater
than or equal to FD_SETSIZE and the FDSET overruns its limit and walks the
stack.

Reviewed-by: default avatarBernd Edlinger <bernd.edlinger@hotmail.de>
(Merged from https://github.com/openssl/openssl/pull/9686)

(cherry picked from commit e1f8584d47a499301fba781086af6885fcf21fec)
parent 738da3d0

crypto/rand/rand_unix.c

+1 −1
Original line number Diff line number Diff line
@@ -411,7 +411,7 @@ static int wait_random_seeded(void) 
            }

            /* Open /dev/random and wait for it to be readable */

            if ((fd = open(DEVRANDOM_WAIT, O_RDONLY)) != -1) {

                if (DEVRANDM_WAIT_USE_SELECT) {

                if (DEVRANDM_WAIT_USE_SELECT && fd < FD_SETSIZE) {

                    FD_ZERO(&fds);

                    FD_SET(fd, &fds);

                    while ((r = select(fd + 1, &fds, NULL, NULL, NULL)) < 0