| Summary: | OpenSSL build mech. doesn't acknowledge /dev/random in Solaris | ||
|---|---|---|---|
| Product: | Portable OpenSSH | Reporter: | garretta |
| Component: | Build system | Assignee: | OpenSSH Bugzilla mailing list <openssh-bugs> |
| Status: | CLOSED INVALID | ||
| Severity: | normal | ||
| Priority: | P3 | ||
| Version: | -current | ||
| Hardware: | SPARC | ||
| OS: | Solaris | ||
| URL: | http://sunsolve.sun.com/pub-cgi/findPatch.pl?patchId=112438&rev=01 | ||
|
Description
garretta
2002-09-18 00:43:47 AEST
Please recompile OpenSSL to understand where your /dev/random device is. When configure says "Random number source: OpenSSL internal ONLY" it means that it's using /dev/urandom. "Random number source: ssh-rand-helper" is the external entropy collector. Regardless, the openssl libraries will use /dev/urandom if it exists. (You may need to recompile openssl, but I don't think so). From openssl's e_os.h (typo and all :-) : #ifndef DEVRANDOM /* set this to your 'random' device if you have one. * My default, we will try to read this file */ #define DEVRANDOM "/dev/urandom" #endif For maximum portability, when building packages I use "./configure --with-rand-helper". That way /dev/urandom will be used if it exists, but if it doesn't then the random helper will be used. This lets us use the same binaries on machines with and without the /dev/random patch. Mass change of RESOLVED bugs to CLOSED |