Am Mo, 8.10.2012, 18:24 schrieb Murray S. Kucherawy:
> Hopefully it logs something to explain what's going on.
Yes:
Oct 8 20:28:51 dakar opendkim[5724]: 3Xb97l3Zczz5vpb: dkim_eom(): internal error from libopendkim: signature generation failed (status 0, length 0) error:24064064:random number
generator:SSLEAY_RAND_BYTES:PRNG not seeded; error:04088003:rsa routines:RSA_setup_blinding:BN lib; error:04066044:rsa routines:RSA_EAY_PRIVATE_ENCRYPT:internal error
I added dev/urandom instead of dev/random to the chroot and now signing inside chroot works again.
Strange. This is not like described at
http://www.openssl.org/support/faq.html#USER1:
"All OpenSSL versions try to use /dev/urandom by default; starting with version 0.9.7,
OpenSSL also tries /dev/random if /dev/urandom is not available."
Andreas
Received on Mon Oct 08 2012 - 18:43:02 PST