From owner-ssh@clinet.fi Fri May 25 17:22:19 2001 Received: from smtp1.clinet.fi (smtp1.clinet.fi [194.100.2.57]) by hutcs.cs.hut.fi (8.9.3/8.9.3) with ESMTP id RAA24616 for ; Fri, 25 May 2001 17:22:19 +0300 (EET DST) Received: from mail.clinet.fi (mail.clinet.fi [194.100.0.7]) by smtp1.clinet.fi (Postfix) with ESMTP id A7A9920A0E; Fri, 25 May 2001 17:22:18 +0300 (EEST) Received: (from majordom@localhost) by mail.clinet.fi (8.9.3/8.9.3) id QAA31569 for ssh-outgoing; Fri, 25 May 2001 16:55:29 +0300 Received: from mailscreen2.btitele.com (mail.btitele.com [198.143.222.251]) by mail.clinet.fi (8.9.3/8.9.3) with SMTP id QAA31565 for ; Fri, 25 May 2001 16:55:27 +0300 Received: From POSTOFFICE.BTITELE.COM (10.1.1.227[10.1.1.227 port:2490]) by mailscreen2.btitele.com Mail essentials (server 2.422) with SMTP id: <698111@mailscreen2.btitele.com> for ; Fri, 25 May 2001 9:54:44 AM -0400 smtpmailfrom Received: by postoffice.btitele.com with Internet Mail Service (5.5.2653.19) id ; Fri, 25 May 2001 09:50:10 -0400 Message-ID: <549AB966B45DD311A58A0000E86CEA8D0CAED57C@postoffice.btitele.com> From: David Edward Shapiro To: "'Lutz Jaenicke'" Cc: "'ssh@clinet.fi'" Subject: RE: STILL can't genereate openssh dsa key Date: Fri, 25 May 2001 09:50:09 -0400 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: text/plain; charset="ISO-8859-1" Sender: owner-ssh@clinet.fi Precedence: bulk I am fairly familiar now with how to configure using either egd or prngd because I have been trying to get this to work for weeks now. It was last configured with prngd and I tested prgnd with egc.pl /var/run/egd-pool read 255 and that worked fine. I ran truss, which watches library calls and other things (ports accessed, permissions on open files, etc.) and saw it get to the point where it just cycles through the getpid() and time() forever. If I kill -1 ssh-keygen (yes, ssh-keygen) it skips past the dsa key generation and completes the rsa key generation fine. I would need to know from the code or somebody familiar with the code why it might be cycling through these two function calls forever. David -----Original Message----- From: Lutz Jaenicke [mailto:Lutz.Jaenicke@aet.TU-Cottbus.DE] Sent: Friday, May 25, 2001 9:17 AM To: 'ssh@clinet.fi' Subject: Re: STILL can't genereate openssh dsa key On Fri, May 25, 2001 at 08:47:18AM -0400, David Edward Shapiro wrote: > I am stuck. I installed the latest zlib, openssl, and openssh 2.9.x and > prngd and egd on solaris 2.7 that had previously been running sshd2. I can > not make dsa keys. A truss on the ssh-key command that make install runs > shows it cycling through getpid() and time() forever. I tried egd first, > and then prgnd next in hopes that those would fix the problem. I have no > clue what to do from here. Has anybody seen this and what did you do? I > copied another openssh dsa key from another system where I generated it, but > it did not work. I really want to get the issue resolved with why it can > not generate dsa keys. The openssh dsa keys do not seem to have host name > in them. To find out why the ssh-key command runs through getpid() and time() would probable need utilization of a debugger, stepping through it. Anyway: I suppose you are talking about ssh-keygen (with 'gen' at the end). The choice of the entropy source is made at "configure" time, so installing EGD/PRNGD after configure/make does not change the binaries. The actual choice is listed at the end of the "configure" run. Please make sure that all data are correct. Best regards, Lutz -- Lutz Jaenicke Lutz.Jaenicke@aet.TU-Cottbus.DE BTU Cottbus http://www.aet.TU-Cottbus.DE/personen/jaenicke/ Lehrstuhl Allgemeine Elektrotechnik Tel. +49 355 69-4129 Universitaetsplatz 3-4, D-03044 Cottbus Fax. +49 355 69-4153