OpenSSL PRNG(伪随机数发生器)内部状态泄露

最新推荐文章于 2025-07-05 13:15:03 发布
转载 最新推荐文章于 2025-07-05 13:15:03 发布 · 2k 阅读 · 2

OpenSSL及SSLeay 0.9.6a及之前版本的伪随机数生成器存在设计缺陷,允许攻击者通过已知输出推断其内部状态并预测后续输出。建议升级至 OpenSSL 0.9.6b 或更高版本。

发布日期:2001-07-11
更新日期:2001-07-17

受影响系统:


OpenSSL Project OpenSSL 0.9.6a
OpenSSL Project OpenSSL 0.9.6
OpenSSL Project OpenSSL 0.9.5
OpenSSL Project OpenSSL 0.9.4
OpenSSL Project OpenSSL 0.9.3
OpenSSL Project OpenSSL 0.9.2b
OpenSSL Project OpenSSL 0.9.1c
SSLeay SSLeay 0.9.1
SSLeay SSLeay 0.9
SSLeay SSLeay 0.8.1

不受影响系统:


OpenSSL Project OpenSSL 0.9.6b

描述:


BUGTRAQ ID: 3004
CVE(CAN) ID: CVE-2001-1141

SSLeay/OpenSSL 0.9.6a以前的版本中的伪随机数发生器(PRNG)存在一个设计错误。
如果攻击者知道了某些特定PRNG请求的输出(包括一系列连续的很短的PRNG请求),
他就可以了解PRNG的内部状态,并可以预测PRNG后续的输出。

<*来源:Markku-Juhani O. Saarinen (markku-juhani.saarinen@nokia.com)
*>



建议:


升级到OpenSSL 0.9.6b或者更高版本:

http://www.openssl.org/source/openssl-engine-0.9.6b.tar.gz
http://www.openssl.org/source/openssl-0.9.6b.tar.gz

openssl研发随机数(random)生成(含源码)
N阶二进制的博客
10-24 5339
请注意,虽然可以用于非安全目的,但如果你的应用程序需要密码学安全的随机数,你应该使用函数。并且,在生产环境中,你应该避免使用自定义的随机数种子,而依赖于系统提供的随机性源来确保更高的安全性。
CSPRNG随机数产生器
adf1256的博客
09-11 675
CSPRNG(Cryptographically Secure Pseudo-Random Number Generator,伪随机数产生器)。 PHP 7 通过引入几个 CSPRNG 函数提供一种简单的机制来生成密码学上强壮的随机数。 1 2 3 4 5 random_bytes() - 加密生存被保护的伪随机字符串。 rand...
openssl——从内存中读取RSA公钥并加密 以及 "PRNG not seeded" error message 的解决办法
愤怒的小丑
04-21 7023
openssl 源码 中的rsatest.cpp
使用 Lehmer 随机数生成器算法实现 PRNG 的函数。:使用 Lehmer 随机数生成器算法生成随机数的函数。-matlab开发
05-30
使用 Lehmer 随机数生成器算法生成随机数的函数。 语法:[x]=lrng(n,g,seed)
openssl详解
王宁的博客
06-04 2万+
OpenSSL简介 目录 目录 第一章 前言 第二章 证书 第三章 加密算法 第四章 协议 第五章 入门 第六章 指令 verify 第七章 指令asn1parse 第八章 指令CA(一) 第九章 指令CA(二) 第十章 指令cipher 第十一章 指令dgst 第十二章 指令dhparam 第十三章 指令dsa 第十四章 指令dsaparam 第十五章 指令en
PRNG伪随机数生成器)
04-01
用于在VB / VBScript / ASP页中创建随机数的ActiveX控件
51、伪随机数生成器与消息认证码的实用化处理
pink7的博客
07-05 37
本文深入探讨了伪随机数生成器(PRNG)与消息认证码(MAC)的实用化处理方法。重点分析了不同 PRNG 的安全特性,如前向安全性,并对 ANSI X9.17、FIPS 186、TLS PRF 等主流构造进行了比较与改进方案的探讨。在消息认证码部分,研究了并行化 MAC 的设计,尤其是 PMAC 和 XOR MAC 的性能差异,指出 PMAC 在效率与安全性方面的优势。最后,结合实际应用场景,提供了 PRNG 和 MAC 的选择建议,以满足不同场景下的安全与效率需求。
31、数字签名的安全性分析
xx56789的博客
06-23 74
本文详细探讨了数字签名的工作原理、常用算法(如RSA、DSA、ECDSA)、安全性模型(如EU-CMA)、常见攻击类型(如密钥恢复攻击、伪造攻击)以及相应的防御措施。此外,还通过实际案例(如OpenSSL漏洞、长度扩展攻击)分析了安全问题及解决方案,并介绍了数字签名在电子邮件和软件分发中的具体应用。最后提出了优化数字签名安全性的方法,包括强随机数生成、密钥管理和多重签名机制,以帮助读者全面理解和提升数字签名技术的安全性。
【rng函数深入剖析】:状态管理与随机数生成器的保存与恢复技术
[【rng函数深入剖析】:状态管理与随机数生成器的保存与恢复技术](https://blog.hubspot.com/hubfs/Google%20Drive%20Integration/python%20pickle_52023.png) # 1. 随机数生成器的原理与应用 随机数在计算机科学中...
【国产密码算法与云计算】:OpenSSL在云安全中的角色与策略
![【国产密码算法与...本文首先概述了云计算与密码学的基础知识,并详细介绍了OpenSSL的架构、模块以及在加解密原理中的实践应用。接着,本文探讨了国产密码算法与OpenSSL的集成,以及这些算法在云计算环境中的应用
揭秘NIST标准下的随机数安全性:从随机性到安全性全解析
[揭秘NIST标准下的随机数安全性:从随机性到安全性全解析](https://cdn.shopify.com/s/files/1/0549/4184/3693/files/640_4_b47f8ab6-94ad-4ff0-b11f-c23222f35452_1024x1024.png?v=1677052675) 参考资源链接:...
mersenne-twister-predictor:根据前624个生成的数字预测MT19937 PRNG。 Python标准库的“随机”有专门的
05-31
Mersenne Twister 预测器 根据前624个生成的数字预测MT19937 PRNG。 Python标准库的“随机”有一个专门化。 用法 安装 $ pip install mersenne-twister-predictor 作为图书馆 该库具有 CPython 标准random的特殊功能。 试试下面的一个: import random from mt19937predictor import MT19937Predictor predictor = MT19937Predictor () for _ in range ( 624 ): x = random . getrandbits ( 32 ) predictor . setrandbits ( x , 32 ) assert random . getrandbits ( 32 ) == predict
openssl编程帮助文档
04-19
第一章 基础知识.....................................................................................................................10 1.1 对称算法.....................................................................................................................10 1.2 摘要算法.....................................................................................................................10 1.3 公钥算法.....................................................................................................................11 1.4 回调函数.....................................................................................................................13 第二章 openssl 简介................................................................................................................15 2.1 openssl 简介................................................................................................................15 2.2 openssl 安装................................................................................................................15 2.2.1 linux 下的安装................................................................................................15 2.2.2 windows 编译与安装.....................................................................................15 2.3 openssl 源代码............................................................................................................16 2.4 openssl 学习方法........................................................................................................18 第三章 堆栈.............................................................................................................................19 3.1 openssl 堆栈................................................................................................................19 3.2 数据结构.....................................................................................................................19 3.3 源码.............................................................................................................................19 3.4 定义用户自己的堆栈函数.........................................................................................20 3.5 编程示例.....................................................................................................................21 第四章 哈希表.........................................................................................................................23 4.1 哈希表.........................................................................................................................23 4.2 哈希表数据结构.........................................................................................................23 4.3 函数说明.....................................................................................................................24 4.4 编程示例.....................................................................................................................26 第五章 内存分配.....................................................................................................................29 5.1 openssl 内存分配........................................................................................................29 5.2 内存数据结构.............................................................................................................29 5.3 主要函数.....................................................................................................................30 5.4 编程示例.....................................................................................................................30 第六章 动态模块加载.............................................................................................................32 6.1 动态库加载.................................................................................................................32 6.2 DSO 概述....................................................................................................................32 6.3 数据结构.....................................................................................................................32 6.4 编程示例.....................................................................................................................33 第七章 抽象IO .......................................................................................................................36 7.1 openssl 抽象IO ..........................................................................................................36 7.2 数据结构.....................................................................................................................36 7.3 BIO 函数....................................................................................................................37 7.4 编程示例.....................................................................................................................38 7.4.1 mem bio...........................................................................................................38 7.4.2 file bio .............................................................................................................38 7.4.3 socket bio ........................................................................................................39 7.4.4 md BIO............................................................................................................41 7.4.5 cipher BIO.......................................................................................................41 7.4.6 ssl BIO.............................................................................................................42 5 7.4.7 其他示例.........................................................................................................44 第八章 配置文件.....................................................................................................................45 8.1 概述.............................................................................................................................45 8.2 openssl 配置文件读取................................................................................................45 8.3 主要函数.....................................................................................................................45 8.4 编程示例.....................................................................................................................46 第九章 随机数.........................................................................................................................48 9.1 随机数.........................................................................................................................48 9.2 openssl 随机数数据结构与源码................................................................................48 9.3 主要函数.....................................................................................................................49 9.4 编程示例.....................................................................................................................50 第十章 文本数据库.................................................................................................................52 10.1 概述.........................................................................................................................52 10.2 数据结构.................................................................................................................52 10.3 函数说明.................................................................................................................53 10.4 编程示例.................................................................................................................53 第十一章 大数.........................................................................................................................56 11.1 介绍.............................................................................................................................56 11.2 openssl 大数表示........................................................................................................56 11.3 大数函数.....................................................................................................................56 11.4 使用示例.....................................................................................................................59 第十二章 BASE64 编解码.....................................................................................................66 12.1 BASE64 编码介绍.....................................................................................................66 12.2 BASE64 编解码原理..................................................................................................66 12.3 主要函数.................................................................................................................67 12.4 编程示例.................................................................................................................67 第十三章 ASN1 库..................................................................................................................70 13.1 ASN1 简介..................................................................................................................70 13.2 DER 编码....................................................................................................................71 13.3 ASN1 基本类型示例..................................................................................................71 13.4 openssl 的ASN.1 库..................................................................................................74 13.5 用openssl 的ASN.1 库DER 编解码....................................................................75 13.6 Openssl 的ASN.1 宏..................................................................................................76 13.7 ASN1 常用函数..........................................................................................................77 13.8 属性证书编码...........................................................................................................90 第十四章 错误处理.................................................................................................................95 14.1 概述.........................................................................................................................95 14.2 数据结构.................................................................................................................95 14.3 主要函数.................................................................................................................97 14.4 编程示例.................................................................................................................99 第十五章 摘要与HMAC......................................................................................................102 15.1 概述.......................................................................................................................102 15.2 openssl 摘要实现......................................................................................................102 15.3 函数说明...............................................................................................................102 6 15.4 编程示例...............................................................................................................103 15.5 HMAC.......................................................................................................................104 第十六章 数据压缩...............................................................................................................106 16.1 简介.......................................................................................................................106 16.2 数据结构...............................................................................................................106 16.3 函数说明...............................................................................................................107 16.4 openssl 中压缩算法协商..........................................................................................107 16.5 编程示例...............................................................................................................108 第十七章 RSA.......................................................................................................................109 17.1 RSA 介绍...................................................................................................................109 17.2 openssl 的RSA 实现................................................................................................109 17.3 RSA 签名与验证过程..............................................................................................110 17.4 数据结构...............................................................................................................110 17.4.1 RSA_METHOD.................................................................................................110 17.4.2 RSA............................................................................................................... 111 17.5 主要函数...............................................................................................................112 17.6 编程示例.......................................................................................................................113 17.6.1 密钥生成............................................................................................................113 17.6.2 RSA 加解密运算..........................................................................................115 17.6.3 签名与验证........................................................................................................118 第十八章 DSA.......................................................................................................................121 18.1 DSA 简介..............................................................................................................121 18.2 openssl 的DSA 实现................................................................................................121 18.3 DSA 数据结构..........................................................................................................122 18.4 主要函数...............................................................................................................123 18.5 编程示例...............................................................................................................124 18.5.1 密钥生成............................................................................................................124 18.5.2 签名与验证........................................................................................................125 第十九章DH...............................................................................................................................128 19.1 DH 算法介绍............................................................................................................128 19.2 openssl 的DH 实现..................................................................................................128 19.3 数据结构.......................................................................................................................129 19.4 主要函数...............................................................................................................130 19.5 编程示例...............................................................................................................131 第二十章 椭圆曲线...............................................................................................................134 20.1 ECC 介绍..................................................................................................................134 20.2 openssl 的ECC 实现................................................................................................134 20.3 主要函数...............................................................................................................135 20.4 编程示例...............................................................................................................135 第二十一章 EVP...................................................................................................................139 21.1 EVP 简介......................................................................................................................139 21.2 数据结构......................................................................................................................139 21.2.1 EVP_PKEY...................................................................................................139 21.2.2 EVP_MD.......................................................................................................140 7 21.2.3 EVP_CIPHER...............................................................................................141 21.2.4 EVP_CIPHER_CTX.....................................................................................142 21.3 源码结构......................................................................................................................142 21.4 摘要函数......................................................................................................................143 21.5 对称加解密函数..........................................................................................................143 21.6 非对称函数..................................................................................................................144 21.7 BASE64 编解码函数................................................................................................145 21.8 其他函数.......................................................................................................................145 21.9 对称加密过程............................................................................................................147 21.10 编程示例...............................................................................................................148 第二十二章 PEM 格式.........................................................................................................155 22.1 PEM 概述.................................................................................................................155 22.2 openssl 的PEM 实现................................................................................................155 22.3 PEM 函数.................................................................................................................156 22.4 编程示例...............................................................................................................157 第二十三章 Engine ...............................................................................................................161 23.1 Engine 概述..............................................................................................................161 23.2 Engine 支持的原理..................................................................................................161 23.3 Engine 数据结构......................................................................................................161 23.4 openssl 的Engine 源码...........................................................................................162 23.5 Engine 函数..............................................................................................................163 23.6 实现Engine 示例.................................................................................................164 第二十四章 通用数据结构...................................................................................................178 24.1 通用数据结构...............................................................................................................178 24.2 X509_ALGOR..........................................................................................................178 24.3 X509_VAL................................................................................................................179 24.4 X509_SIG .................................................................................................................181 24.5 X509_NAME_ENTRY.............................................................................................182 24.6 X509_NAME............................................................................................................182 24.7 X509_EXTENSION .................................................................................................188 24.8 X509_ATTRIBUTE..................................................................................................194 24.9 GENERAL_NAME ..................................................................................................195 第二十五章 证书申请...........................................................................................................199 25.1 证书申请介绍.......................................................................................................199 25.2 数据结构...............................................................................................................199 25.3 主要函数...............................................................................................................200 25.4 编程示例...............................................................................................................202 25.4.1 生成证书请求文件............................................................................................202 25.4.2 解码证书请求文件.......................................................................................204 第二十六章 X509 数字证书.................................................................................................206 26.1 X509 数字证书.........................................................................................................206 26.2 opessl 实现................................................................................................................206 26.3 X509 数据结构.........................................................................................................206 26.4 X509_TRUST 与X509_CERT_AUX......................................................................209 8 26.5 X509_PURPOSE ......................................................................................................211 26.6 主要函数...............................................................................................................214 26.7 证书验证...............................................................................................................217 26.7.1 证书验证项........................................................................................................217 26.7.2 Openssl 中的证书验证.................................................................................217 第二十七章 OCSP.................................................................................................................218 27.1 概述.......................................................................................................................218 27.2 openssl 实现..............................................................................................................218 27.3 主要函数...............................................................................................................218 27.4 编程示例.......................................................................................................................223 第二十八章 CRL...................................................................................................................224 28.1 CRL 介绍..................................................................................................................224 28.2 数据结构...............................................................................................................224 28.3 CRL 函数..................................................................................................................225 28.4 编程示例...............................................................................................................226 第二十九章 PKCS7...............................................................................................................229 29.1 概述...............................................................................................................................229 29.2 数据结构...............................................................................................................229 29.3 函数.......................................................................................................................230 29.4 消息编解码.............................................................................................................230 29.4.1 data ..............................................................................................................231 29.4.2 signed data...................................................................................................231 29.4.3 enveloped ....................................................................................................232 29.4.4 signed_and_enveloped ................................................................................233 29.4.5 digest ...........................................................................................................234 29.4.6 encrypted.....................................................................................................234 29.4.7 读取PEM .....................................................................................................235 29.4.8 解码pkcs7 ....................................................................................................236 第三十章 PKCS12...............................................................................................................237 30.1 概述.......................................................................................................................237 30.2 openss 实现...............................................................................................................237 30.3 数据结构.......................................................................................................................237 30.4 函数...............................................................................................................................238 30.5 编程示例...............................................................................................................240 第三十一章 SSL 实现...........................................................................................................250 31.1 概述...............................................................................................................................250 31.2 openssl 实现..............................................................................................................250 31.3 建立SSL 测试环境..............................................................................................250 31.4 数据结构...............................................................................................................251 31.5 加密套件...............................................................................................................252 31.6 密钥信息...............................................................................................................253 31.7 SESSION ..................................................................................................................253 31.8 多线程支持...........................................................................................................254 31.9 编程示例...............................................................................................................254 9 31.10 函数.......................................................................................................................265 第三十二章 Openssl 命令.....................................................................................................268 32.1 概述...............................................................................................................................268 32.2 asn1parse...................................................................................................................268 32.3 dgst...........................................................................................................................270 32.4 gendh.........................................................................................................................271 32.5 passwd.......................................................................................................................271 32.6 rand ...........................................................................................................................272 32.7 genrsa ........................................................................................................................273 32.8 req .............................................................................................................................273 32.9 x509...........................................................................................................................276 32.10 version...................................................................................................................279 32.11 speed......................................................................................................................279 32.12 sess_id .................................................................................................................280 32.13 s_server ...............................................................................................................280 32.14 s_client ................................................................................................................282 32.15 rsa........................................................................................................................284 32.16 pkcs7 ...................................................................................................................285 32.17 dsaparam .............................................................................................................285 32.18 gendsa..................................................................................................................286 32.19 enc .......................................................................................................................287 32.20 ciphers .................................................................................................................288 32.21 CA.......................................................................................................................288 32.22 verify ...................................................................................................................292 32.23 rsatul....................................................................................................................293 32.24 crl ..........................................................................................................................294 32.25 crl2pkcs7 ...........................................................................................................295 32.26 errstr ..................................................................................................................296 32.27 ocsp .............................................................................................................................296 32.28 pkcs12 .................................................................................................................299 32.29 pkcs8 ...................................................................................................................301 32.30 s_time ..................................................................................................................302 32.31 dhparam 和dh.............................................................................................................303 32.32 ecparam.................................................................................................................305 32.33 ec .........................................................................................................................306 32.34 dsa .......................................................................................................................307 32.35 nseq .....................................................................................................................308 32.36 prime ...................................................................................................................308 32.37 smime ..................................................................................................................309
openssl使用手册
conkeyn的专栏
08-04 1985
OpenSSL有两种运行模式:交互模式和批处理模式。 直接输入openssl回车进入交互模式,输入带命令选项的openssl进入批处理模式。 (1) 配置文件 OpenSSL的默认配置文件位置不是很固定,可以用openssl ca命令得知。 你也可以指定自己的配置文件。 当前只有三个OpenSSL命令会使用这个配置文件:ca, req, x509。有望未来版本会有更多命令使用配置...
C++实现java sha1prng算法
prograc
06-10 939
c++ sha1prng
漏洞补丁:漏洞命名(CVE和CNNVD)及补丁查找
guyuelin123的博客
10-18 2万+
截图为报告的部分内容,里面包含了编号,描述,解决地址。这里对 CVE编号,CVSS分值,国家漏洞库编号(CNNVD)等几个主要名称含义进行记录。
Openssl 随机数生成
热门推荐
Sunspider107的专栏
03-20 2万+
Openssl中生成随机数的函数,定义在rand.h 文件中。 最直接的用法是调用函数: int  RAND_bytes(unsigned char *buf,int num); 根据加密算法生成随机数,其实也是一个伪随机数,但是,如果在调用此函数之前,设定好随机种子,那么生成的随机数是不能被预先计算出来的。 buf:输出,生产的随机数存储的数组; num: 输入,生产的随机数个数;
JAX学习笔记(random)
WeekSix的博客
03-31 3217
Random.PRNGKey from jax import random key = random.PRNGKey(1) print(key) PRNGKey会生成一个(2,)shape array来作为seed的值 output: [0 1] 在未来需要生成随机数的时候,可以直接使用key值来作为seed,方便操作。 x = random.normal(key) w = random.no...
OpenSSL v0.9.8a随机数发生器分析(合集)
云与山的彼端
10-30 1万+
OpenSSL随机数发生器 本文档对OpenSSL使用的随机数进行研究分析,主要涉及OpenSSL v0.9.8a的随机数发生器以及其在Windows系统下的熵源采集情况。 目录 1. 概况... 1 1.1 OpenSSL随机数发生器概况... 1 1.2 OpenSSL 0.9.8a的随机数发生器概述... 2 2. 随机数发生器内部状态... 3 3. 函数说明... 4...
FF1如何通过AES生成伪随机数
最新发布
08-16
### FF1加密算法中如何利用AES生成伪随机数 FF1(Format-Preserving Encryption Mode 1)是一种基于Feistel网络结构的格式保留加密算法,其核心机制之一是通过伪随机函数(PRF)生成中间值,用于在每一轮加密中对数据进行混淆。该伪随机函数通常基于AES(Advanced Encryption Standard)实现,以确保其安全性和不可预测性。 在FF1算法中,AES被用于生成伪随机数的方式如下: 在每一轮加密过程中,右半部分的数据(记为 R)与一个 tweak 值以及当前轮次编号拼接在一起,形成一个输入块。该输入块经过填充(如PKCS#7)后,使用AES加密算法进行加密,生成一个伪随机输出。该输出随后与左半部分的数据(L)进行异或操作,从而更新左半部分的值。这一过程在每一轮中重复进行,通常为10轮[^1]。 以下是一个基于AES的伪随机数生成过程的伪代码示例: ```cpp #include <openssl/aes.h> #include <vector> std::vector<unsigned char> generate_prf(const std::vector<unsigned char>& input, const unsigned char key[16]) { AES_KEY aes_key; AES_set_encrypt_key(key, 128, &aes_key); std::vector<unsigned char> padded_input = pad_pkcs7(input); // 假设pad_pkcs7为填充函数 std::vector<unsigned char> output(padded_input.size()); AES_encrypt(padded_input.data(), output.data(), &aes_key); return output; } ``` 在上述代码中,`AES_encrypt` 函数使用给定的密钥对输入数据块进行加密,生成伪随机输出。该输出随后用于Feistel网络中的异或操作,从而实现数据混淆[^3]。 需要注意的是,FF1算法中AES的使用方式通常为ECB模式,因为每轮的输入块是独立构造的,不需要依赖前一轮的输出。这种方式确保了每轮的伪随机性,并且避免了模式依赖带来的复杂性[^2]。 ###
评论 1
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值