| Summary: | Since 5.7p1 OpenSSH doesn't take advantage of OpenSSL hardware engine | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
| Product: | Portable OpenSSH | Reporter: | opod | ||||||||
| Component: | scp | Assignee: | Assigned to nobody <unassigned-bugs> | ||||||||
| Status: | CLOSED FIXED | ||||||||||
| Severity: | normal | CC: | dtucker | ||||||||
| Priority: | P2 | ||||||||||
| Version: | 5.7p1 | ||||||||||
| Hardware: | ix86 | ||||||||||
| OS: | Linux | ||||||||||
| Bug Depends on: | 1845 | ||||||||||
| Bug Blocks: | |||||||||||
| Attachments: |
|
||||||||||
|
Description
opod
2011-03-27 04:52:07 AEDT
Created attachment 2022 [details]
5.6p1 client
Created attachment 2023 [details]
5.8p1 client
The bug still persists with 5.8p2. I'll happily provide more information, just tell me what you need. You can forcibly enable hardware support with ./configure --with-ssl-engine although I'm not sure what would have changed to stop an override in openssl.cnf from working (without --with-ssl-engine it does the same thing it used to do). ... which you have. I'm going to attach a patch to add some debugging, please try again with that and attach the output of the client with ssh -vvv. Created attachment 2041 [details]
switch from SSLeay_add_all_algorithms to OpenSSL_add_all_algoritms for compat hook
ah, I think I see what happened. We changed from the old (undocumented) SSLeay_add_all_algorithms() function the new (documented) OpenSSL_add_all_algorithms() function, and in doing so we no longer called the hook in the compat library we use to enable this.
Please try the attached patch.
This does indeed work, thank you for addressing this issue. Committed, thanks. close resolved bugs now that openssh-5.9 has been released |