3 files changed, 71 insertions, 39 deletions
diff --git a/ChangeLog b/ChangeLog
index a41898011..9fd1c7864 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -2,6 +2,8 @@
 - (djm) Better fix to aclocal tests from Garrick James <garrick@james.net>
 - (djm) Account expiry support from Andreas Steinmetz <ast@domdv.de>
 - (djm) Added password expiry checking (no password change support)
+ - (djm) Make EGD failures non-fatal if OpenSSL's entropy pool is still OK
+   based on patch from Lutz Jaenicke <Lutz.Jaenicke@aet.TU-Cottbus.DE>
 - OpenBSD CVS update
   - provos@cvs.openbsd.org  2000/06/25 14:17:58
     [channels.c]
diff --git a/README b/README
index c51428849..54adb10e5 100644
--- a/README
+++ b/README
@@ -37,9 +37,15 @@ There is now several mailing lists for this port of OpenSSH. Please
 refer to http://www.openssh.com/list.html for details on how to join.
 Please send bug reports and patches to the mailing list
-openssh-unix-dev@mindrot.org. The list is currently open to posting by
+openssh-unix-dev@mindrot.org. The list is open to posting by
 unsubscribed users.
+If you are a citizen of the USA or another country which restricts 
+export of cryptographic products, then please refrain from sending 
+crypto-related code or patches to the list. We cannot accept them.
+Other code contribution are accepted, but please follow the OpenBSD
+style guidelines[5].
 Please refer to the INSTALL document for information on how to install
 OpenSSH on your system. The UPGRADING document details differences 
 between this port of OpenSSH and F-Secure SSH 1.x.
@@ -59,4 +65,5 @@ References -
 [2] ftp://ftp.freesoftware.com/pub/infozip/zlib/
 [3] http://www.openssl.org/
 [4] http://www.kernel.org/pub/linux/libs/pam/ (PAM is standard on Solaris)
+[5] http://www.openbsd.org/cgi-bin/man.cgi?query=style&sektion=9&apropos=0&manpath=OpenBSD+Current
diff --git a/entropy.c b/entropy.c
index 09dcae3ba..83759ca65 100644
--- a/entropy.c
+++ b/entropy.c
@@ -35,7 +35,7 @@
 #include <openssl/rand.h>
 #include <openssl/sha.h>
-RCSID("$Id: entropy.c,v 1.14 2000/06/18 04:07:04 djm Exp $");
+RCSID("$Id: entropy.c,v 1.15 2000/06/26 03:01:33 djm Exp $");
 #ifndef offsetof
 # define offsetof(type, member) ((size_t) &((type *)0)->member)
@@ -66,64 +66,83 @@ RCSID("$Id: entropy.c,v 1.14 2000/06/18 04:07:04 djm Exp $");
 #ifdef EGD_SOCKET
 /* Collect entropy from EGD */
-void get_random_bytes(unsigned char *buf, int len)
+int get_random_bytes(unsigned char *buf, int len)
 {
-        static int egd_socket = -1;
+        int fd;
-        int c;
+        char msg[2];
-        char egd_message[2] = { 0x02, 0x00 };
        struct sockaddr_un addr;
        int addr_len;
-        memset(&addr, '\0', sizeof(addr));
+        /* Sanity checks */
-        addr.sun_family = AF_UNIX;
-        
-        /* FIXME: compile time check? */
        if (sizeof(EGD_SOCKET) > sizeof(addr.sun_path))
                fatal("Random pool path is too long");
-        
+        if (len > 255)
+                fatal("Too many bytes to read from EGD");
+        memset(&addr, '\0', sizeof(addr));
+        addr.sun_family = AF_UNIX;
        strlcpy(addr.sun_path, EGD_SOCKET, sizeof(addr.sun_path));
-        
        addr_len = offsetof(struct sockaddr_un, sun_path) + sizeof(EGD_SOCKET);
        
-        if (egd_socket == -1) {
+        fd = socket(AF_UNIX, SOCK_STREAM, 0);
-                egd_socket = socket(AF_UNIX, SOCK_STREAM, 0);
+        if (fd == -1) {
-                if (egd_socket == -1)
+                error("Couldn't create AF_UNIX socket: %s", strerror(errno));
-                        fatal("Couldn't create AF_UNIX socket: %s", strerror(errno));
+                return(0);
-                if (connect(egd_socket, (struct sockaddr*)&addr, addr_len) == -1)
+        }
-                        fatal("Couldn't connect to EGD socket \"%s\": %s", addr.sun_path, strerror(errno));
-        }       
+        if (connect(fd, (struct sockaddr*)&addr, addr_len) == -1) {
+                error("Couldn't connect to EGD socket \"%s\": %s", 
+                        addr.sun_path, strerror(errno));
+                close(fd);
+                return(0);
+        }
-        if (len > 255)
-                fatal("Too many bytes to read from EGD");
-        
        /* Send blocking read request to EGD */
-        egd_message[1] = len;
+        msg[0] = 0x02;
+        msg[1] = len;
-        c = atomicio(write, egd_socket, egd_message, sizeof(egd_message));
+        if (atomicio(write, fd, msg, sizeof(msg)) != sizeof(msg)) {
-        if (c == -1)
+                error("Couldn't write to EGD socket \"%s\": %s", 
-                fatal("Couldn't write to EGD socket \"%s\": %s", EGD_SOCKET, strerror(errno));
+                        EGD_SOCKET, strerror(errno));
+                close(fd);
+                return(0);
+        }
-        c = atomicio(read, egd_socket, buf, len);
+        if (atomicio(read, fd, buf, len) != len) {
-        if (c <= 0)
+                error("Couldn't read from EGD socket \"%s\": %s", 
-                fatal("Couldn't read from EGD socket \"%s\": %s", EGD_SOCKET, strerror(errno));
+                        EGD_SOCKET, strerror(errno));
+                close(fd);
+                return(0);
+        }
+        
+        close(fd);
+        
+        return(1);
 }
 #else /* !EGD_SOCKET */
 #ifdef RANDOM_POOL
 /* Collect entropy from /dev/urandom or pipe */
-void get_random_bytes(unsigned char *buf, int len)
+int get_random_bytes(unsigned char *buf, int len)
 {
-        static int random_pool = -1;
+        int random_pool;
-        int c;
+        random_pool = open(RANDOM_POOL, O_RDONLY);
        if (random_pool == -1) {
-                random_pool = open(RANDOM_POOL, O_RDONLY);
+                error("Couldn't open random pool \"%s\": %s", 
-                if (random_pool == -1)
+                        RANDOM_POOL, strerror(errno));
-                        fatal("Couldn't open random pool \"%s\": %s", RANDOM_POOL, strerror(errno));
+                return(0);
        }
        
-        c = atomicio(read, random_pool, buf, len);
+        if (atomicio(read, random_pool, buf, len) != len) {
-        if (c <= 0)
+                error("Couldn't read from random pool \"%s\": %s", 
-                fatal("Couldn't read from random pool \"%s\": %s", RANDOM_POOL, strerror(errno));
+                        RANDOM_POOL, strerror(errno));
+                close(random_pool);
+                return(0);
+        }
+        
+        close(random_pool);
+        
+        return(1);
 }
 #endif /* RANDOM_POOL */
 #endif /* EGD_SOCKET */
@@ -138,8 +157,12 @@ seed_rng(void)
        char buf[32];
        
        debug("Seeding random number generator");
-        get_random_bytes(buf, sizeof(buf));
+        if (!get_random_bytes(buf, sizeof(buf)) && !RAND_status())
+                fatal("Entropy collection failed and entropy exhausted");
        RAND_add(buf, sizeof(buf), sizeof(buf));
        memset(buf, '\0', sizeof(buf));
 }

diff --git a/ChangeLog b/ChangeLog index a41898011..9fd1c7864 100644 --- a/ChangeLog +++ b/ChangeLog
@@ -2,6 +2,8 @@
2	- (djm) Better fix to aclocal tests from Garrick James <garrick@james.net>	2	- (djm) Better fix to aclocal tests from Garrick James <garrick@james.net>
3	- (djm) Account expiry support from Andreas Steinmetz <ast@domdv.de>	3	- (djm) Account expiry support from Andreas Steinmetz <ast@domdv.de>
4	- (djm) Added password expiry checking (no password change support)	4	- (djm) Added password expiry checking (no password change support)
		5	- (djm) Make EGD failures non-fatal if OpenSSL's entropy pool is still OK
		6	based on patch from Lutz Jaenicke <Lutz.Jaenicke@aet.TU-Cottbus.DE>
5	- OpenBSD CVS update	7	- OpenBSD CVS update
6	- provos@cvs.openbsd.org 2000/06/25 14:17:58	8	- provos@cvs.openbsd.org 2000/06/25 14:17:58
7	[channels.c]	9	[channels.c]


diff --git a/README b/README index c51428849..54adb10e5 100644 --- a/README +++ b/README
@@ -37,9 +37,15 @@ There is now several mailing lists for this port of OpenSSH. Please
37	refer to http://www.openssh.com/list.html for details on how to join.	37	refer to http://www.openssh.com/list.html for details on how to join.
38		38
39	Please send bug reports and patches to the mailing list	39	Please send bug reports and patches to the mailing list
40	openssh-unix-dev@mindrot.org. The list is currently open to posting by	40	openssh-unix-dev@mindrot.org. The list is open to posting by
41	unsubscribed users.	41	unsubscribed users.
42		42
		43	If you are a citizen of the USA or another country which restricts
		44	export of cryptographic products, then please refrain from sending
		45	crypto-related code or patches to the list. We cannot accept them.
		46	Other code contribution are accepted, but please follow the OpenBSD
		47	style guidelines[5].
		48
43	Please refer to the INSTALL document for information on how to install	49	Please refer to the INSTALL document for information on how to install
44	OpenSSH on your system. The UPGRADING document details differences	50	OpenSSH on your system. The UPGRADING document details differences
45	between this port of OpenSSH and F-Secure SSH 1.x.	51	between this port of OpenSSH and F-Secure SSH 1.x.
@@ -59,4 +65,5 @@ References -
59	[2] ftp://ftp.freesoftware.com/pub/infozip/zlib/	65	[2] ftp://ftp.freesoftware.com/pub/infozip/zlib/
60	[3] http://www.openssl.org/	66	[3] http://www.openssl.org/
61	[4] http://www.kernel.org/pub/linux/libs/pam/ (PAM is standard on Solaris)	67	[4] http://www.kernel.org/pub/linux/libs/pam/ (PAM is standard on Solaris)
		68	[5] http://www.openbsd.org/cgi-bin/man.cgi?query=style&sektion=9&apropos=0&manpath=OpenBSD+Current
62		69


diff --git a/entropy.c b/entropy.c index 09dcae3ba..83759ca65 100644 --- a/entropy.c +++ b/entropy.c
@@ -35,7 +35,7 @@
35	#include <openssl/rand.h>	35	#include <openssl/rand.h>
36	#include <openssl/sha.h>	36	#include <openssl/sha.h>
37		37
38	RCSID("$Id: entropy.c,v 1.14 2000/06/18 04:07:04 djm Exp $");	38	RCSID("$Id: entropy.c,v 1.15 2000/06/26 03:01:33 djm Exp $");
39		39
40	#ifndef offsetof	40	#ifndef offsetof
41	# define offsetof(type, member) ((size_t) &((type *)0)->member)	41	# define offsetof(type, member) ((size_t) &((type *)0)->member)
@@ -66,64 +66,83 @@ RCSID("$Id: entropy.c,v 1.14 2000/06/18 04:07:04 djm Exp $");
66		66
67	#ifdef EGD_SOCKET	67	#ifdef EGD_SOCKET
68	/* Collect entropy from EGD */	68	/* Collect entropy from EGD */
69	void get_random_bytes(unsigned char *buf, int len)	69	int get_random_bytes(unsigned char *buf, int len)
70	{	70	{
71	static int egd_socket = -1;	71	int fd;
72	int c;	72	char msg[2];
73	char egd_message[2] = { 0x02, 0x00 };
74	struct sockaddr_un addr;	73	struct sockaddr_un addr;
75	int addr_len;	74	int addr_len;
76		75
77	memset(&addr, '\0', sizeof(addr));	76	/* Sanity checks */
78	addr.sun_family = AF_UNIX;
79
80	/* FIXME: compile time check? */
81	if (sizeof(EGD_SOCKET) > sizeof(addr.sun_path))	77	if (sizeof(EGD_SOCKET) > sizeof(addr.sun_path))
82	fatal("Random pool path is too long");	78	fatal("Random pool path is too long");
83		79	if (len > 255)
		80	fatal("Too many bytes to read from EGD");
		81
		82	memset(&addr, '\0', sizeof(addr));
		83	addr.sun_family = AF_UNIX;
84	strlcpy(addr.sun_path, EGD_SOCKET, sizeof(addr.sun_path));	84	strlcpy(addr.sun_path, EGD_SOCKET, sizeof(addr.sun_path));
85
86	addr_len = offsetof(struct sockaddr_un, sun_path) + sizeof(EGD_SOCKET);	85	addr_len = offsetof(struct sockaddr_un, sun_path) + sizeof(EGD_SOCKET);
87		86
88	if (egd_socket == -1) {	87	fd = socket(AF_UNIX, SOCK_STREAM, 0);
89	egd_socket = socket(AF_UNIX, SOCK_STREAM, 0);	88	if (fd == -1) {
90	if (egd_socket == -1)	89	error("Couldn't create AF_UNIX socket: %s", strerror(errno));
91	fatal("Couldn't create AF_UNIX socket: %s", strerror(errno));	90	return(0);
92	if (connect(egd_socket, (struct sockaddr*)&addr, addr_len) == -1)	91	}
93	fatal("Couldn't connect to EGD socket \"%s\": %s", addr.sun_path, strerror(errno));	92
94	}	93	if (connect(fd, (struct sockaddr*)&addr, addr_len) == -1) {
		94	error("Couldn't connect to EGD socket \"%s\": %s",
		95	addr.sun_path, strerror(errno));
		96	close(fd);
		97	return(0);
		98	}
95		99
96	if (len > 255)
97	fatal("Too many bytes to read from EGD");
98
99	/* Send blocking read request to EGD */	100	/* Send blocking read request to EGD */
100	egd_message[1] = len;	101	msg[0] = 0x02;
		102	msg[1] = len;
101		103
102	c = atomicio(write, egd_socket, egd_message, sizeof(egd_message));	104	if (atomicio(write, fd, msg, sizeof(msg)) != sizeof(msg)) {
103	if (c == -1)	105	error("Couldn't write to EGD socket \"%s\": %s",
104	fatal("Couldn't write to EGD socket \"%s\": %s", EGD_SOCKET, strerror(errno));	106	EGD_SOCKET, strerror(errno));
		107	close(fd);
		108	return(0);
		109	}
105		110
106	c = atomicio(read, egd_socket, buf, len);	111	if (atomicio(read, fd, buf, len) != len) {
107	if (c <= 0)	112	error("Couldn't read from EGD socket \"%s\": %s",
108	fatal("Couldn't read from EGD socket \"%s\": %s", EGD_SOCKET, strerror(errno));	113	EGD_SOCKET, strerror(errno));
		114	close(fd);
		115	return(0);
		116	}
		117
		118	close(fd);
		119
		120	return(1);
109	}	121	}
110	#else /* !EGD_SOCKET */	122	#else /* !EGD_SOCKET */
111	#ifdef RANDOM_POOL	123	#ifdef RANDOM_POOL
112	/* Collect entropy from /dev/urandom or pipe */	124	/* Collect entropy from /dev/urandom or pipe */
113	void get_random_bytes(unsigned char *buf, int len)	125	int get_random_bytes(unsigned char *buf, int len)
114	{	126	{
115	static int random_pool = -1;	127	int random_pool;
116	int c;
117		128
		129	random_pool = open(RANDOM_POOL, O_RDONLY);
118	if (random_pool == -1) {	130	if (random_pool == -1) {
119	random_pool = open(RANDOM_POOL, O_RDONLY);	131	error("Couldn't open random pool \"%s\": %s",
120	if (random_pool == -1)	132	RANDOM_POOL, strerror(errno));
121	fatal("Couldn't open random pool \"%s\": %s", RANDOM_POOL, strerror(errno));	133	return(0);
122	}	134	}
123		135
124	c = atomicio(read, random_pool, buf, len);	136	if (atomicio(read, random_pool, buf, len) != len) {
125	if (c <= 0)	137	error("Couldn't read from random pool \"%s\": %s",
126	fatal("Couldn't read from random pool \"%s\": %s", RANDOM_POOL, strerror(errno));	138	RANDOM_POOL, strerror(errno));
		139	close(random_pool);
		140	return(0);
		141	}
		142
		143	close(random_pool);
		144
		145	return(1);
127	}	146	}
128	#endif /* RANDOM_POOL */	147	#endif /* RANDOM_POOL */
129	#endif /* EGD_SOCKET */	148	#endif /* EGD_SOCKET */
@@ -138,8 +157,12 @@ seed_rng(void)
138	char buf[32];	157	char buf[32];
139		158
140	debug("Seeding random number generator");	159	debug("Seeding random number generator");
141	get_random_bytes(buf, sizeof(buf));	160
		161	if (!get_random_bytes(buf, sizeof(buf)) && !RAND_status())
		162	fatal("Entropy collection failed and entropy exhausted");
		163
142	RAND_add(buf, sizeof(buf), sizeof(buf));	164	RAND_add(buf, sizeof(buf), sizeof(buf));
		165
143	memset(buf, '\0', sizeof(buf));	166	memset(buf, '\0', sizeof(buf));
144	}	167	}
145		168