search for: seed_rng

OpenSSL 1.1.0 has deprecated this function. --- configure.ac | 1 + openbsd-compat/openssl-compat.c | 2 ++ openbsd-compat/openssl-compat.h | 4 ++++ 3 files changed, 7 insertions(+) diff --git a/configure.ac b/configure.ac index 3f7fe2cd..db2aade8 100644 --- a/configure.ac +++ b/configure.ac @@ -2710,6 +2710,7 @@ if test "x$openssl" = "xyes" ; then ])

http://bugzilla.mindrot.org/show_bug.cgi?id=968 djm at mindrot.org changed: What |Removed |Added ---------------------------------------------------------------------------- Attachment #760| |ok? Flag| | ------- Additional Comments From djm at mindrot.org 2005-02-16 11:24 -------

I believe there is a problem with the openbsd-compat/bsd-arc4random.c file. If arc4random () is called without seed_rng having previously been called (eg if you run ssh-keygen -p ) then it does not in fact invoke seed_rng () if it is the first time. Instead it will invoke seed_rng every time BUT the first time. At least that is the way I read the code, and changing it as below allowed me to change my passphras...

...R/home/eedalf/lib -L/home/eedalf/lib -L/home/eedalf/lib -ldsocks -L/opt/local/zlib-1.1.2/lib -L/usr/local/lib -R/usr/local/lib -lssh -lopenbsd-compat -lz -lsocket -lnsl -lgen -lcrypto > Undefined first referenced > symbol in file > seed_rng openbsd-compat//libopenbsd-compat.a(bsd-arc4random.o) > ld: fatal: Symbol referencing errors. No output written to ssh-keyscan > collect2: ld returned 1 exit status > *** Error code 1 > make: Fatal error: Command failed for target `ssh-keyscan' I...

Hello, I am trying to port Openssh to MIPS platform. I am facing some problems with the function seed_rng(). I get a segmentation fault when this function is executed. Any suggestion will be appreciated. Kiran. ******************************************************* Kiran R Rao Software Engineer Integrated Device Technology,Inc. (408)-330-1835 *******************************************************...

Correct me if I'm wrong, but init_rng() in entropy.c doesn't call seed_rng(), and in fact seed_rng() isn't called from _anywhere_ (in openssh-2.5.1p2). So calls to BN_rand() only pick up the tiny/non-existent amount of entropy added by BN_rand() itself from the system clock (time in seconds). Shouldn't seed_rng() be called from init_rng()? It should be called f...

I'm seeing a linking problem with scp on Solaris 2.6 that I'm not seeing on Linux (Mandrake 8). It boils down to Solaris not having mkdtemp(), and the mkdtemp() compatibility function referencing arc4random(), which calls seed_rng(). Since that function is back in libssh.a, we get a function-not-found link error. I added -lssh after -lopenbsd_compat on scp's build rule (so it is listed twice): scp$(EXEEXT): $(LIBCOMPAT) libssh.a scp.o $(LD) -o $@ scp.o $(LDFLAGS) -lssh -lopenbsd-compat -lssh $(LIBS) Another solution...

http://bugzilla.mindrot.org/show_bug.cgi?id=231 ------- Additional Comments From stevesk at pobox.com 2002-05-12 05:31 ------- the error is not seen in current i believe due to the fix to arc4random() to call seed_rng() correctly. is there a way we can reduce the diff in terms of moving function calls around due to delaying RNG seeding? http://www.eviladmin.org/cgi-bin/cvsweb.cgi/ssh-keygen.c.diff?r1=1.87&r2=1.88 http://www.eviladmin.org/cgi-bin/cvsweb.cgi/ssh-keygen.c.diff?r1=1.91&r2=1.92 -----...

...{ error("Couldn't open random pool \"%s\": %s", *************** *** 206,242 **** return(1); } #endif /* RANDOM_POOL */ - #endif /* USE_PRNGD */ - - /* - * Seed OpenSSL's random number pool from Kernel random number generator - * or PRNGD/EGD - */ - void - seed_rng(void) - { - unsigned char buf[32]; - - debug("Seeding random number generator"); - - if (!get_random_bytes(buf, sizeof(buf))) { - if (!RAND_status()) - fatal("Entropy collection failed and entropy exhausted"); - } else { - RAND_add(buf, sizeof(buf), sizeof(buf)); -...

...enbsd-compat/ -R/home/eedalf/lib -L/home/eedalf/lib -L/home/eedalf/lib -ldsocks -L/opt/local/zlib-1.1.2/lib -L/usr/local/lib -R/usr/local/lib -lssh -lopenbsd-compat -lz -lsocket -lnsl -lgen -lcrypto Undefined first referenced symbol in file seed_rng openbsd-compat//libopenbsd-compat.a(bsd-arc4random.o) ld: fatal: Symbol referencing errors. No output written to ssh-keyscan collect2: ld returned 1 exit status *** Error code 1 make: Fatal error: Command failed for target `ssh-keyscan' I'm actually tryin...

...compat/ -L/usr/local/ssl/lib -L/usr/local/ssl -lssh -lopenbsd-compat -lcrypt -lz -lnsl -lutil -lcrypto -lwrap openbsd-compat//libopenbsd-compat.a(bsd-arc4random.o): In function `arc4random_stir': /usr/local/src/openssh-SNAP-02082001/openbsd-compat/bsd-arc4random.c:61: undefined reference to `seed_rng' collect2: ld returned 1 exit status make: *** [sftp] Error 1 Here is my configure: ./configure --with-tcp-wrappers --with-md5-passwords --with-default-path=$PATH OpenSSH configured has been configured with the following options. User binaries: /usr/local/bin...

...ssh-keygen reports a fatal error while trying to update the comment field of an RSA1 key. The error reported is "Couldn't obtain random bytes (error 604389476)" This happens because somewhere between 3.0.2p1 and 3.1p1 (the two versions I examined), the calls to the init_rng() and seed_rng() in the main function got moved from near the beginning of the function to after where all the options are processed. The function do_change_comment() handles the comment changing and is called during option processing. do_change_comment() calls a function save the key file, which uses the ran...

...or the second time the /dev/urandom gets populated immediately and it starts properly. This problem is present in the version 3.6.1p2. We did not have the problem with the previuos version 3.0.1p2 that we used. Looking at the source code the error comes from a file entropy.c and the fucntion is seed_rng(). When we add the function RAND_add() in the function seed_rng(), sshd starts properly. Lot of code are executed only if the macro OPENSSL_PRNG_ONLY is not defined. If we define this macro in config.h as below /* Define if you want to use OpenSSL's internally seeded PRNG only */ #define OPEN...

Failure on Solaris 9 sparc: Undefined first referenced symbol in file seed_rng openbsd-compat//libopenbsd-compat.a(bsd-arc4random.o) ld: fatal: Symbol referencing errors. No output written to ssh-pkcs11-helper collect2: ld returned 1 exit status gmake: *** [ssh-pkcs11-helper] Error 1

Hi! I have just played around a little bit with the actual CVS on HP-UX 10.20. - In openbsd-compat/Makefile.in the .c.o default rule is missing: .c.o: $(CC) $(CFLAGS) $(CPPFLAGS) -c $< - Linking sftp fails, because seed_rng() cannot be resolved. Actually it is in entropy.c (libssh) and needed by arc4random.c. A similar problem has been discussed several days ago and the problem should be solved by removing arc4random calls from sftp-client.c. In the ChangeLog there is: 20010208 - (djm) Fix linking of sftp, d...

We've run into an interesting dilemma regarding last log information and ssh 4.2p1. In 3.8, we didn't see this problem, but now has cropped up in 4.2. When a user logs in, sshd seems to call 'last' to get the last log information. 'last' then opens the /var/log/wtmp file and processes the information. On some systems, this file can be quite large, and we're seeing

...ns options; + +uid_t original_real_uid; + static void clear_pass(void) { @@ -311,12 +317,30 @@ AuthenticationConnection *ac = NULL; char *sc_reader_id = NULL; int i, ch, deleting = 0, ret = 0; + char buf[256]; + struct passwd *pw; __progname = ssh_get_progname(argv[0]); init_rng(); seed_rng(); SSLeay_add_all_algorithms(); + + /* Read options */ + initialize_options(&options); + + pw = getpwuid(original_real_uid = getuid()); + if (!pw) { + logit("You don't exist, go away!"); + exit(1); + } + + snprintf(buf, sizeof buf, "%.100s/%.100s", pw->pw_dir,...

...cm.user ?in have programme after ssh_get_programme after init_rng before xmalloc after xmalloc before initiliase serveroptions in initilise sever options after initiliase serveroptions before ssleay add algorithms after ssleay add algorithms in channel set before log init after log init before seed_rng after seed_rng before read_server_config after read_server_config ?before fill_default_server_options after fill_default_server_options sshd version OpenSSH_3.7.1p2 before lodaing private keys ?after lodaing private keys ?after lodaing private keys options.host_key_files[i]=/etc/ssh/ssh_host_rsa_...

...hild 'ipcs -a' completion: No child processes Not enough entropy in RNG ssh-rand-helper child produced insufficient data unexpected EOF in read_timeout It was discovered that rsync had set SIGCHLD to SIG_IGN prior to calling ssh. Setting SIGCHLD to SIG_DFL prior to forking ssh-rand-helper (seed_rng() in entropy.c) solved this problem. ------- You are receiving this mail because: ------- You are the assignee for the bug, or are watching the assignee. _______________________________________________ openssh-unix-dev@mindrot.org mailing list http://www.mindrot.org/mailman/listinfo/openssh-unix...

...cm.user in have programme after ssh_get_programme after init_rng before xmalloc after xmalloc before initiliase serveroptions in initilise sever options after initiliase serveroptions before ssleay add algorithms after ssleay add algorithms in channel set before log init after log init before seed_rng after seed_rng before read_server_config after read_server_config before fill_default_server_options after fill_default_server_options sshd version OpenSSH_3.7.1p2 before lodaing private keys after lodaing private keys after lodaing private keys options.host_key_files[i]=/etc/ssh/ssh_host_rsa_...