Jürgen Keil wrote:
Richard Lowe wrote:
Beyond all that, I *still* can't figure out why this
isn't blowing up on me...
You need a recent on-closed bits archive to reproduce the
problem; so far on-closed-bins-20070409.i386.tar.bz2 seems
to be the only on-closed-bins archive that has the extra check
in /usr/lib/libelfsign.so.1 to reject certificates with unexpected
MD5 checksums.
So the fact I forgot to bump my closed bins was saving me, that has to be a
first. :)
Juergen, is there anything at all strange about the
way you're doing things?
I'm using the centrino ipw driver, which needs RC4 encryption.
It tries to initialize the kernel RC4 support early during ipw
driver attach time. For kernel RC4 encryption, this tries to
load the /kernel/crypto/arcfour module - but the module fails to load
in case the MD5 checkum of /etc/crypto/certs/SUNWObjectCA
isn't the one compiled into libelfsign.so.1
And I'm actually compiling my own bfu archives from source.
Well me too, obviously, as above, I'd let my closed-bins slip out of date,
however. Apparently that was saving me without more noticeable ill-effects.
-- Rich
_______________________________________________
tools-discuss mailing list
tools-discuss@opensolaris.org
