On Mon, Mar 23, 2020 at 8:22 PM Jeffrey Walton <noloa...@gmail.com> wrote:
>
> On Mon, Mar 23, 2020 at 7:50 PM Daniel Stenberg <dan...@haxx.se> wrote:
> >
> > On Mon, 23 Mar 2020, Jeffrey Walton wrote:
> >
> > > $ OpenSSL 1.1.1e
> > > $ nm -g $HOME/tmp/lib/libcrypto.so | grep RAND_egd
> > > $
> > >
> > > So it looks like EGD is off by default in OpenSSL 1.1.1.
> >
> > Indeed, but also this works fine for me already! I had totally forgot about
> > it
> > but the configure script checks for RAND_egd and our code #ifdefs
> > accordingly.
> >
> > On my machine in the curl tree:
> >
> > $ grep RAND_EGD lib/curl_config.h
> > /* #undef HAVE_RAND_EGD */
>
> Thanks.
>
> It appears Linux is different then NetBSD.
>
> I don't see anything interesting and untried in configure:
>
> grep -i 'egd' configure
> with_egd_socket
> --with-egd-socket=FILE Entropy Gathering Daemon socket pathname
> for ac_func in RAND_egd \
> # Check whether --with-egd-socket was given.
> if test "${with_egd_socket+set}" = set; then :
> withval=$with_egd_socket; EGD_SOCKET="$withval"
> if test -n "$EGD_SOCKET" ; then
> #define EGD_SOCKET "$EGD_SOCKET"
>
> I've tried both --without-egd and --without-egd-socket.
>
> How do I turn off the feature?
This is kind of hacky, but I was able to disable EGD with:
./configure \
ac_cv_func_RAND_egd=no \
"${CONFIG_OPTS[@]}"
It shows as a cached no:
checking for openssl/err.h... yes
checking for RAND_egd... (cached) no
checking for SSLv2_client_method... yes
checking for OpenSSL_version... yes
checking for BoringSSL... no
checking for libressl... no
Jeff
-------------------------------------------------------------------
Unsubscribe: https://cool.haxx.se/list/listinfo/curl-library
Etiquette: https://curl.haxx.se/mail/etiquette.html
