From aba22072c085e158ea7497ffcc521467ee1c75ac Mon Sep 17 00:00:00 2001 From: akr Date: Fri, 20 Jun 2008 02:46:17 +0000 Subject: * string.c (rb_memhash): randomize hash to avoid algorithmic complexity attacks. (rb_str_hash): use rb_memhash. * include/ruby/intern.h (rb_reset_random_seed): declared. * thread.c (rb_thread_atfork): call rb_reset_random_seed. * inits.c (rb_call_inits): call Init_RandomSeed at first. * random.c (seed_initialized): defined. (fill_random_seed): extracted from random_seed. (make_seed_value): extracted from random_seed. (rb_f_rand): initialize random seed at first. (initial_seed): defined. (Init_RandomSeed): defined. (Init_RandomSeed2): defined. (rb_reset_random_seed): defined. (Init_Random): call Init_RandomSeed2. git-svn-id: http://svn.ruby-lang.org/repos/ruby/trunk@17465 b2dd03c8-39d4-4d8f-98ff-823fe69b080e --- ChangeLog | 22 ++++++++++++++++++++++ 1 file changed, 22 insertions(+) (limited to 'ChangeLog') diff --git a/ChangeLog b/ChangeLog index 6a2d69eb2..643f035cc 100644 --- a/ChangeLog +++ b/ChangeLog @@ -1,3 +1,25 @@ +Fri Jun 20 11:07:56 2008 Tanaka Akira + + * string.c (rb_memhash): randomize hash to avoid algorithmic + complexity attacks. + (rb_str_hash): use rb_memhash. + + * include/ruby/intern.h (rb_reset_random_seed): declared. + + * thread.c (rb_thread_atfork): call rb_reset_random_seed. + + * inits.c (rb_call_inits): call Init_RandomSeed at first. + + * random.c (seed_initialized): defined. + (fill_random_seed): extracted from random_seed. + (make_seed_value): extracted from random_seed. + (rb_f_rand): initialize random seed at first. + (initial_seed): defined. + (Init_RandomSeed): defined. + (Init_RandomSeed2): defined. + (rb_reset_random_seed): defined. + (Init_Random): call Init_RandomSeed2. + Wed Jun 18 21:52:38 2008 URABE Shyouhei * array.c (ary_new, rb_ary_initialize, rb_ary_store, -- cgit