random seeding

• Messages sorted by: [ date ][ thread ][ subject ][ author ]
• Next message: Robert Carl Rice: "Re: how to find out if a socket is closed"
• Previous message: Paul Schinder: "Re: openssl + Crypto::SSLeay"

------=_NextPart_000_049B_01BFEC0B.5249D8F0
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

I want to use Crypto::SSLeay or Net::SSLeay for SSL programming on =
HP-UX. Because I don't have /etc/random (some HP-UX guys say there =
really isn't an equivalent of /dev/random on HP-UX). I installed egd.pl =
0.8 instead. Then I executed

=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D

egd.pl /etc/entropy
openssl rand -out .rnd -rand /etc/entropy 255
export RANDFILE=3D/usr/local/ssl/.rnd
openssl s_client -connect shop.sol.no:443

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++=
+++++++++++++

Everything's OK. Then I install a perl module Net::SSLeay 1.05. while =
I'm 'making test', it printed

=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
        PERL_DL_NONLAZY=3D1 /bin/perl -Iblib/arch -Iblib/lib =
-I/opt/perl5/lib/5.6.0/PA-RISC2.0 -I/opt/perl5/lib/5.6.0 test.pl
1..16
ok 1
ok 2
        Spawning a test server on port 1212, pid=3D29014...
ok 3
Random number generator not seeded!!!
ok 4
callback: ssl connect 29025: 1 - error:24064064:random number =
generator:SSLEAY_RAND_BYTES:PRNG not seeded
29025: callback: ssl connect
*** not ok 5

        Sending 1 MB over localhost, may take a while (and some VM)...
connect: Connection refused at examples/bulk.pl line 18.
                ...took 1 secs (1024 KB/s)
*** not ok 6

        Sending 1 MB over pipes, may take a while (and some VM)...
ssl connect 29029: 1 - error:24064064:random number =
generator:SSLEAY_RAND_BYTES:PRNG not seeded
29029: ssl connect

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++=
+++++++++++++

I also installed Crypto::SSLeay 0.16. I went smoothly with "perl =
Makefile.PL; make; make test; make install". Then I executed =
'net_ssl_test' attached with this package, it gave me

=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D

Argument "SSL negotiation failed" isn't numeric in scalar assignment at =
/opt/perl5/lib/5.6.0/IO/Socket/INET.pm line 90.
Use of uninitialized value in hash element at =
/opt/perl5/lib/site_perl/5.6.0/PA-RISC2.0/Net/SSL.pm line 53.
Can't connect to shop.sol.no:443 at ./net_ssl_test line 9.

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++=
+++++++++++++

I guess I didn't properly configure random number source of OpenSSL API. =
How can I do?

Yewen




------=_NextPart_000_049B_01BFEC0B.5249D8F0
Content-Type: text/html;
	charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">

• Next message: Robert Carl Rice: "Re: how to find out if a socket is closed"
• Previous message: Paul Schinder: "Re: openssl + Crypto::SSLeay"