I thought the build and test environments were just "supposed to work". It
seems to me that they should. If nothing else, you might consider
distributing OpenSSL with sample random data for the purpose of testing.
Putting some junk in the RANDFILE file worked just fine, though - you were
right.
The reason I didn't do that to begin with was because RANDFILE was not set
when I tried to build the first time. The error message said:
Consider setting the RANDFILE environment variable to point at a file that
'random' data can be kept in (the file will be overwritten).
I did that. I created a file that random data could be stored in and
pointed RANDFILE to it. The message dind't say "set RANDFILE to point to a
file that already has random data in it, and rest assured that your random
data will not be damaged." Had it said that, I might have known to point it
to a message log or something. I certainly took "that random data can be
kept in (the file will be overwritten)" to mean that OpenSSL would generate
its own random data and store it in that file.
If you can't make the distribution build and test successfully out-of-box,
it might be helpful to at least change these instructions so that us
dingbats can figure out what the correct solution is without polluting the
Listserver with this trivial stuff.
Once I fed the PRNG, however, the tests ran fine.
Thanks for the help!
Rebey
-----Original Message-----
From: Mark Mentovai [mailto:[EMAIL PROTECTED]]
Sent: Monday, July 31, 2000 9:00 PM
To: [EMAIL PROTECTED]
Subject: RE: Support for SPARC Solaris 2.8/5.8...
Bill Rebey wrote:
>The test ./dsatest -app2_1 fails. It has some kind of trouble with the
>PRNG. Here's the output:
[skipping to a dump of your error stack]
>11816:error:24064064:random number generator:SSLEAY_RAND_BYTES:PRNG not
>seeded:md_rand.c:473:You need to read the OpenSSL FAQ,
>http://www.openssl.org/support/faq.html
>11816:error:0A06B003:dsa routines:DSA_sign_setup:BN lib:dsa_ossl.c:214:
>11816:error:0A070003:dsa routines:DSA_do_sign:BN lib:dsa_ossl.c:152:
>11816:error:0D072006:asn1 encoding routines:ASN1_sign:bad get asn1 object
>call:a_sign.c:129:
The PRNG isn't seeded.
>6:09pm cheetah: /home/OpenSSL/openssl-SNAP-20000731> echo $RANDFILE
>/tmp/randomData
>
>6:09pm cheetah: /home/OpenSSL/openssl-SNAP-20000731> dir $RANDFILE
>-rw-r--r-- 1 brebey 0 Jul 31 18:05 /tmp/randomData
Aha! A zero-length random file! That's not very random, is it? What
happens when you unset RANDFILE or use a file that has some content?
Mark
--
Do not reply directly to this e-mail address
--
Mark Mentovai
UNIX Engineer
Gillette Global Network
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
