tech-security: Re: openssl (libcrypto) repaired for non-32bit arch

Subject: Re: openssl (libcrypto) repaired for non-32bit arch
To: None <eeh@netbsd.org, itojun@iijlab.net>
From: None <eeh@netbsd.org>
List: tech-security
Date: 10/01/2000 15:19:02

Date: 1 Oct 2000 15:19:02 -0000
Message-ID: <20001001151902.4812.qmail@mail.netbsd.org>
From: eeh@netbsd.org
To: eeh@netbsd.org, itojun@iijlab.net
Subject: Re: openssl (libcrypto) repaired for non-32bit arch
Cc: tech-security@netbsd.org

	>O.K.  bntest seems to be working but RSA is still not happy.

		which architecture and how it is not happy (more details)?

NetBSD/sparc64, of course.

It seems to have something to do with the acquisition of sufficient entropy
for the random number generator.  Probably some floating point bug in the
compiler.  Still looking into it.

BTW, why is it that we require /dev/random to have working crypto?  The 
random number generator in libcrypto should not refuse to work if 
there's no rnd device.  (It's not like rnd is such a good source of
entropy.  Most of its sources are clocked so that data is not really
random.)

Eduado Horvath