HPE Community
Operating System - HP-UX
1819901 Members
2461 Online
109607 Solutions
New Discussion юеВ

ssh-rand-helper hang

 
SOLVED
Go to solution
BIHAN
Frequent Advisor

тАО05-22-2003 08:55 AM

тАО05-22-2003 08:55 AM

ssh-rand-helper hang

Hello,
after a nfs server failure
(some mount are rpc blocked)
ssh-rand-helper hang.
it is due to the df command.
The command "tusc ssh-rand-helper" show :

pipe() .... = 6 (7)
gettimeofday(0x7f7f38c4, NULL) .... = 0
fork() .... = 4742
close(7) .... = 0
gettimeofday(0x7f7f38cc, NULL) .... = 0
select(7, 0x7f7f3740, NULL, NULL, 0x7f7f38d8) .... = 0
close(6) .... = 0
waitpid(4742, 0x7f7f3858, 0) ....

# ps -fp 4742
UID PID PPID C STIME TTY TIME COMMAND
root 4742 4704 0 18:41:45 pts/2 0:00 df
0 Kudos
Reply
5 REPLIES 5
BIHAN
Frequent Advisor

тАО05-22-2003 09:00 AM

тАО05-22-2003 09:00 AM

Re: ssh-rand-helper hang

Of course ssh is unusable.
0 Kudos
Reply
James A. Donovan
Honored Contributor

тАО05-22-2003 09:07 AM

тАО05-22-2003 09:07 AM

Solution

Re: ssh-rand-helper hang

You should be able to edit your ssh_prng_cmds file to remove any commands that are dependent on that NFS server mount point being available.

If this machine is running the 11.11 OS, then I would recommend you install the KRNG11i bundle from http://www.software.hp.com in order to get the /dev/random and /dev/urandom facilities.
Remember, wherever you go, there you are...
Reply
BIHAN
Frequent Advisor

тАО05-22-2003 09:42 AM

тАО05-22-2003 09:42 AM

Re: ssh-rand-helper hang

Thank you.
I didn't notice this file
df -l hangs too
so i have removed all the df from ssh_prng_cmds.

0 Kudos
Reply
BIHAN
Frequent Advisor

тАО06-03-2003 04:19 AM

тАО06-03-2003 04:19 AM

Re: ssh-rand-helper hang

Hello,
I did a litle check, the ssh_prng_cmds is full of broken commands.
I seems that there aren't any HP specific command in this file.

Some commands are ok but
didnt give any randomness like "ls -alni" on symbolic links some other didn't use the HP-UX syntax like "arp -a -n"

I think HP should give a new ssh_prng_cmds file.

ls -alni /var/log FAIL
ls -alni /var/adm OK
ls -alni /usr/adm OK
ls -alni /var/mail OK
ls -alni /usr/mail OK
ls -alni /var/adm/syslog OK
ls -alni /usr/adm/syslog OK
ls -alni /var/spool/mail FAIL
ls -alni /proc FAIL
ls -alni /tmp OK
ls -alni /var/tmp OK
ls -alni /usr/tmp OK
ls -alTi /var/log FAIL
ls -alTi /var/adm FAIL
ls -alTi /var/mail FAIL
ls -alTi /var/adm/syslog FAIL
ls -alTi /var/spool/mail FAIL
ls -alTi /proc FAIL
ls -alTi /tmp FAIL
ls -alTi /var/tmp FAIL
ls -alTi /usr/tmp FAIL
netstat -an OK
netstat -in OK
netstat -rn OK
netstat -pn FAIL
netstat -ia OK
netstat -s OK
netstat -is OK
arp -a -n FAIL
ifconfig -a FAIL
ps laxww FAIL
ps -al OK
ps -efl OK
jstat FAIL
w OK
who -i FAIL
last OK
lastlog FAIL
df OK
df -i OK
sar -d FAIL
vmstat OK
uptime OK
ipcs -a OK
tail -200 /var/log/messages FAIL
tail -200 /var/log/syslog FAIL
tail -200 /var/adm/messages OK


tail -200 /var/adm/syslog OK
tail -200 /var/adm/syslog/syslog.log OK
tail -200 /var/log/maillog FAIL
tail -200 /var/adm/maillog FAIL
tail -200 /var/adm/syslog/mail.log OK
0 Kudos
Reply
Bill Douglass
Esteemed Contributor

тАО06-03-2003 05:14 AM

тАО06-03-2003 05:14 AM

Re: ssh-rand-helper hang

Here is my ssh_prng_cmds file. It would be nice to see what other folks have done to enhance entropy gathering (besides the /dev/random patch, which is not available on 11.0).

"ls -alni /var/adm" /usr/bin/ls 0.02
"ls -alni /var/mail" /usr/bin/ls 0.02
"ls -alni /var/adm/syslog" /usr/bin/ls 0.02
"ls -alni /var/spool/mqueue" undef 0.02
"ls -alni /tmp" /usr/bin/ls 0.02
"ls -alni /var/tmp" /usr/bin/ls 0.02

"netstat -an" /usr/bin/netstat 0.05
"netstat -in" /usr/bin/netstat 0.05
"netstat -rn" /usr/bin/netstat 0.02
"netstat -s" /usr/bin/netstat 0.02

"arp -an" undef 0.02


"ps laxww" undef 0.03
"ps -efl" /usr/bin/ps 0.03

"w" /usr/bin/w 0.05


"last" /usr/bin/last 0.01


"df" /usr/bin/df 0.01
"df -i" /usr/bin/df 0.01


"vmstat" /usr/bin/vmstat 0.01
"uptime" /usr/bin/uptime 0.01

"ipcs -a" /usr/bin/ipcs 0.01

"tail -200 /var/adm/syslog/syslog.log" /usr/bin/tail 0.01
"tail -200 /var/adm/syslog/mail.log" /usr/bin/tail 0.01
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.