[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[MiNT] OpenSSH: PRNG is not seeded

To: mint@lists.fishpool.fi
Subject: [MiNT] OpenSSH: PRNG is not seeded
From: Vincent Rivière <vincent.riviere@freesbee.fr>
Date: Tue, 17 Dec 2013 01:17:23 +0100
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=sender:message-id:date:from:user-agent:mime-version:to:subject :content-type:content-transfer-encoding; bh=g4kbzYm0rJmCHI6OT7rjHk6VOeOoJRkMjjrjutwsHII=; b=b97dX9JJhRmty87iDLxrFkIST9qBvvuywQFviM6gZZ5mFUDrmdef1LPOK5SAnfOAAj 2F90IRWbOlMQObt+j02yufOgBCRHiGH6cRhCoCtuNyZHWCTeoUJd4+1PdhPToH26LQjG dfNajUcuI5amSpm5Zgl0vbPfhJiUsWDx8IRt9lyGEVyF+bYn+aOq+IskKjmRuiM+Y2Jx RumooaMOUVELLl67eeKII+pndWbclzisTUZX4Xpdfdc6wTzf/qtPx222+l4YX/3AOEKs TV4PjgWPqIVw3jLU3GGu6PRTB1LsEorDXHkucMCUZ3kLzRgbvoqNmPy/pJZJEQTpOkSx hwbQ==
List-help: <mailto:ecartis@lists.fishpool.fi?Subject=help>
List-id: <mint.lists.fishpool.fi>
List-owner: <mailto:tjhukkan@fishpool.fi>
List-post: <mailto:mint@lists.fishpool.fi>
List-subscribe: <mailto:mint-request@lists.fishpool.fi?Subject=subscribe>
List-unsubscribe: <mailto:mint-request@lists.fishpool.fi?Subject=unsubscribe>
Sender: mint-bounce@lists.fishpool.fi
User-agent: Mozilla/5.0 (Windows NT 5.1; rv:24.0) Gecko/20100101 Thunderbird/24.2.0

Hello.

I'm currently rebuilding OpenSSH for MiNT.
Basically, it works perfectly, but I face something which looks like a bug.

I run sshd on the ARAnyM side.
Then I connect from Windows using PuTTY/KiTTY/WinSCP.

When trying to get more than 1 or 2 simultaneous connexions, I get thefollowing message in the server log:

PRNG is not seeded

I hunted it and I arrived into OpenSSL, file crypto/rand/rand_unix.c.
See line 324:
http://git.openssl.org/gitweb/?p=openssl.git;a=blob;f=crypto/rand/rand_unix.c

The code tries to read /dev/urandom. It uses select() to determine if thereis something to read, and avoid blocking. But it seems that something goeswrong in FreeMiNT, and sometimes select() does not indicate that data isavailable. Hence the damn "PRNG is not seeded" error.


If I replace the line 324 by "if (1)" to force:
/* can't use select, so just try to read once anyway */
    try_read = 1;
then it works perfectly and I don't have any trouble.

Is it possible that select() on /dev/urandom sometimes fails to signal thatdata is always available? Maybe that assumption is wrong?I'm not familiar with select() or even FreeMiNT devices, so I'm not sure tounderstand where the problem actually is.


Alan, did you encounter such trouble with sshd?
Do someone propose a best alternative than the patch I proposed above?

NB: The stack for the sftp-server tool must be set to 128k otherwise it maycrash prematurely.


--
Vincent Rivière

Follow-Ups:
- Re: [MiNT] OpenSSH: PRNG is not seeded
  - From: Alan Hourihane <alanh@fairlite.co.uk>

Prev by Date: Re: [MiNT] Packages upgraded
Next by Date: Re: [MiNT] Software IDE
Previous by thread: Re: [MiNT] usage of 'dd' under FreeMiNT?
Next by thread: Re: [MiNT] OpenSSH: PRNG is not seeded
Index(es):
- Date
- Thread