Richard Levitte - VMS Whacker wrote:
>
> From: Jeffrey Altman <[EMAIL PROTECTED]>
>
> jaltman> > Rand_Poll succeeds in the sense that the function completes,
> jaltman> > but it never returns to ssleay_rand_bytes.
> jaltman>
> jaltman> What do you mean by "but it never returns to ssleay_rand_bytes"? How
> jaltman> can it return to RAND_bytes() without returning to
> jaltman> ssleay_rand_bytes()?
>
> Hmm, could that be an effect of some kind of optimization? Just a
> wild theory...
I tested jeffrey's fixes, and the removal of the cursor stuff on Winnt4
fixes the problem. The call to GetCursorInfo() corrupted the memory in
close proximity to itself including the caller for the release version.
I see that the debug version which segments memory much more than the
release version would overwrite something not in conjuction with the
passed structure or the calling function - hence no indication of
anything going wrong with memory corrruption.
tests continue until failing within implementations within testss.bat of
req and x509 with more PRNG errors (info below) - I think i pointed this
out yesterday.
Andrew, who has to do actual work today :-(
(all in all, I think Jeffrey gets the cold beer for the week)
************
************
F:\openssl-SNAP-20000914\out32dll>echo make a certificate request using
'req'
make a certificate request using 'req'
F:\openssl-SNAP-20000914\out32dll>openssl req -config ..\test\CAss.cnf
-out reqC
A.ss -keyout keyCA.ss -new
Using configuration from ..\test\CAss.cnf
Loading 'screen' into random state - done
unable to load 'random state'
This means that the random number generator has not been seeded
with much random data.
Generating a 512 bit RSA private key
180:error:24064064:random number generator:SSLEAY_RAND_BYTES:PRNG not
seeded:.\c
rypto\rand\md_rand.c:474:You need to read the OpenSSL FAQ,
http://www.openssl.or
g/support/faq.html
180:error:04069003:rsa routines:RSA_generate_key:BN
lib:.\crypto\rsa\rsa_gen.c:1
82:
F:\openssl-SNAP-20000914\out32dll>if errorlevel 1 goto e_req
F:\openssl-SNAP-20000914\out32dll>echo error using 'req' to generate a
certifica
te request
error using 'req' to generate a certificate request
F:\openssl-SNAP-20000914\out32dll>goto end
F:\openssl-SNAP-20000914\out32dll>if errorlevel 1 goto done
F:\openssl-SNAP-20000914\out32dll>echo problems.....
problems.....
F:\openssl-SNAP-20000914\out32dll>PATH=..\ms;C:\Perl\bin;C:\WINNT\system32;C:\WI
NNT;d:\MSDev\bin;C:\Program Files\Microsoft Visual
Studio\Common\Tools\WinNT;C:\
Program Files\Microsoft Visual Studio\Common\MSDev98\Bin;C:\Program
Files\Micros
oft Visual Studio\Common\Tools;C:\Program Files\Microsoft Visual
Studio\VC98\bin
****************
****************
F:\openssl-SNAP-20000914\out32dll>echo convert the certificate request
into a se
lf signed certificate using 'x509'
convert the certificate request into a self signed certificate using
'x509'
F:\openssl-SNAP-20000914\out32dll>openssl x509 -CAcreateserial -in
reqCA.ss -day
s 30 -req -out certCA.ss -signkey keyCA.ss 1>err.ss
Loading 'screen' into random state - done
unable to load 'random state'
This means that the random number generator has not been seeded
with much random data.
Consider setting the RANDFILE environment variable to point at a file
that
'random' data can be kept in (the file will be overwritten).
reqCA.ss: No such file or directory
F:\openssl-SNAP-20000914\out32dll>if errorlevel 1 goto e_x509
F:\openssl-SNAP-20000914\out32dll>echo error using 'x509' to self sign a
certifi
cate request
error using 'x509' to self sign a certificate request
F:\openssl-SNAP-20000914\out32dll>goto end
F:\openssl-SNAP-20000914\out32dll>if errorlevel 1 goto done
F:\openssl-SNAP-20000914\out32dll>echo problems.....
problems.....
*****************
*****************
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
