First off, yes, I did read the FAQ.
I am trying to build 9.8.0r on an old Dec Unix (aka tru64 Alpha) machine,
specifically OSF1 V4.0. I'm getting the PRNG not seeded error when running the
tests. Yes, I did read the FAQ.
Now this machine is pretty old, and AFAIK, has no random device. I did try
and improvise one by using the RANDFILE environment variable pointing to a file
with random data. That didn't fix the problem either. The FAQ really doesn't
say much about what needs to be in the file, perhaps I didn't have enough
random data?
Is this test, 'testca' one of the alluded to areas of the code that does not
use RANDFILE?
Anyone else have any ideas?
====
Generating a 1024 bit RSA private key
........................++++++
........++++++
writing new private key to 'newkey.pem'
-----
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [AU]:AU
Organization Name (eg, company) []:Dodgy Brothers
Common Name (eg, YOUR name) []:Brother 1
Common Name (eg, YOUR name) []:Brother 2
Request is in newreq.pem, private key is in newkey.pem
Using configuration from ../apps/openssl.cnf
unable to load 'random state'
This means that the random number generator has not been seeded
with much random data.
Check that the request matches the signature
Signature ok
Certificate Details:
Serial Number:
9f:56:84:ab:1d:33:70:0d
Validity
Not Before: Feb 17 17:53:19 2011 GMT
Not After : Feb 17 17:53:19 2012 GMT
Subject:
countryName = AU
organizationName = Dodgy Brothers
commonName = Brother 1
commonName = Brother 2
X509v3 extensions:
X509v3 Basic Constraints:
CA:FALSE
Netscape Comment:
OpenSSL Generated Certificate
X509v3 Subject Key Identifier:
35:3F:A9:F0:64:CF:7A:A2:A9:80:56:84:44:90:55:8F:EF:73:93:F3
X509v3 Authority Key Identifier:
keyid:89:61:52:C8:2D:80:03:5F:7C:83:2C:98:6C:1D:39:9E:DC:BA:FE:A8
Certificate is to be certified until Feb 17 17:53:19 2012 GMT (365 days)
Sign the certificate? [y/n]:13527:error:24064064:random number
generator:SSLEAY_RAND_BYTES:PRNG not seeded:md_rand.c:515:You need to read the
OpenSSL FAQ, http://www.openssl.org/support/faq.html
13527:error:04088003:rsa routines:RSA_setup_blinding:BN lib:rsa_lib.c:222:
13527:error:04066044:rsa routines:RSA_EAY_PRIVATE_ENCRYPT:internal
error:rsa_eay.c:401:
13527:error:0D0C3006:asn1 encoding routines:ASN1_item_sign:EVP lib:a_sign.c:281:
Signed certificate is in newcert.pem
*** Exit 1
Stop.
*** Exit 1
Stop.
