HPE GreenLake Administration
- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- random number generator ... not seeded
Operating System - HP-UX
1831670
Members
2030
Online
110029
Solutions
Forums
Categories
Company
Local Language
back
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Forums
Discussions
Discussions
Discussions
Forums
Discussions
back
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Blogs
Information
Community
Resources
Community Language
Language
Forums
Blogs
Topic Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
12-10-2002 10:08 AM
12-10-2002 10:08 AM
random number generator ... not seeded
I'm trying to generate a secure key set using openssl in Apache. I keep getting an error stating that the random number generator:SSLEAY_RAND_BYTES:PRNG: not seeded. What's that all about?
...just round up the usual suspects
3 REPLIES 3
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
12-10-2002 11:25 AM
12-10-2002 11:25 AM
Re: random number generator ... not seeded
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
12-10-2002 01:03 PM
12-10-2002 01:03 PM
Re: random number generator ... not seeded
The OpenSSL req.c command has a -rand option too.
try and add a -rand /home/entropy to these lines in
grid-cert-request.in and grid-cert-request
${SSLEAY} req -new -keyout ${KEY_FILE} -out ${REQ_OUTPUT} -config ${SSLEAY_USER_CONFIG} ${NO_DES}
and
${SSLEAY} req -new -keyout ${KEY_FILE} -out ${REQ_OUTPUT} -config ${used_config} ${NO_DES} < ${REQ_INPUT}
Also looking closer, it look like it will create a .rnd file
for you if you have the RANDFILE=$ENV::HOME/.rnd
set in the globus-user-ssleay.conf
The app_RAND_ routines in apps/app_rand.c will check if
the RANDFILE is a EGD socket and not try and write to it.
The GSI will also try and call the EGD using the OpenSSL interface,
from src/Security/gssapi_ssleay/sslutils.c. See the comments which
start at line 325. But I have not tried the EGD this myself.
Can you try and set the EDG_PATH to point to your socket?
The GSI code does try and add some extra randomness, and will use the
$HOME/.rnd or RANDFILE if set.
351 #if SSLEAY_VERSION_NUMBER >= 0x0090581fL
352 /*
353 * Try to use the Entropy Garthering Deamon
354 * See the OpenSSL crypto/rand/rand_egd.c
355 */
356 egd_path = getenv("EGD_PATH");
357 if (egd_path == NULL) {
358 egd_path = "/etc/entropy";
359 }
360 RAND_egd(egd_path);
361 #endif
362
try and add a -rand /home/entropy to these lines in
grid-cert-request.in and grid-cert-request
${SSLEAY} req -new -keyout ${KEY_FILE} -out ${REQ_OUTPUT} -config ${SSLEAY_USER_CONFIG} ${NO_DES}
and
${SSLEAY} req -new -keyout ${KEY_FILE} -out ${REQ_OUTPUT} -config ${used_config} ${NO_DES} < ${REQ_INPUT}
Also looking closer, it look like it will create a .rnd file
for you if you have the RANDFILE=$ENV::HOME/.rnd
set in the globus-user-ssleay.conf
The app_RAND_ routines in apps/app_rand.c will check if
the RANDFILE is a EGD socket and not try and write to it.
The GSI will also try and call the EGD using the OpenSSL interface,
from src/Security/gssapi_ssleay/sslutils.c. See the comments which
start at line 325. But I have not tried the EGD this myself.
Can you try and set the EDG_PATH to point to your socket?
The GSI code does try and add some extra randomness, and will use the
$HOME/.rnd or RANDFILE if set.
351 #if SSLEAY_VERSION_NUMBER >= 0x0090581fL
352 /*
353 * Try to use the Entropy Garthering Deamon
354 * See the OpenSSL crypto/rand/rand_egd.c
355 */
356 egd_path = getenv("EGD_PATH");
357 if (egd_path == NULL) {
358 egd_path = "/etc/entropy";
359 }
360 RAND_egd(egd_path);
361 #endif
362
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
12-11-2002 12:14 AM
12-11-2002 12:14 AM
Re: random number generator ... not seeded
Hi,
It is looking for /dev/urandom random seed generator device file.
HP-UX 11i v1.6 has kernel support for that device file. ( Not Installed by default)
HP-UX 11.x and 10.x don;t have support for this file. You have use some other random generator
regards,
U.SivaKumar
It is looking for /dev/urandom random seed generator device file.
HP-UX 11i v1.6 has kernel support for that device file. ( Not Installed by default)
HP-UX 11.x and 10.x don;t have support for this file. You have use some other random generator
regards,
U.SivaKumar
Innovations are made when conventions are broken
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.
Company
Events and news
Customer resources
© Copyright 2025 Hewlett Packard Enterprise Development LP