I'm having a problem with openssl 0.96b on HP-UX 11. I have scripts which
create a CA key using openssl req -new; that always works fine, and never
complains about a lack of random seed data. But for new installations (of
my scripts and a new random file), I can successfully openssl req -new, then
fail to openssl genrsa (it warns of low entropy in the random file, then
dies with the "PRNG not seeded" error). But I can repeat the openssl req
-new all day, interspersed with occasional openssl genrsa commands that
continue to fail. Adding pseudo-random junk to the random file doesn't seem
to help.
The only way to clear this condition (which only happens for new
installations) is to invoke the openssl command line, do a req -new, and
then I can genrsa in the future with that installation.
Has anyone seen this before? Why should there be a problem with genrsa at
the shell prompt, but not at the openssl prompt? (Or is it the req -new
command that differs?) Am I going nuts?
I'm going to try openssl 0.96c next; it just built and seems to have
finished make test without errors (modulo HP-UX bc is deemed inferior)...
Keith
Keith Polivka-Rohrer
CBR - Customer Billing Relationships
Technical Architect, Server Development
Phone: 847-898-2841
Fax: 847-898-2544
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
