Advanced
Mailing List Archive

Mailing List Archive

  1. Home >
  2. OpenSSH>
  3. Dev
Post-compile RSA error with 1.2.2, Solaris 7, OpenSSL 0.9.5
rip at clark
Mar 1, 2000, 11:33 AM
Post #1 of 4 (639 views)
Permalink
I've been happily using the pre-packaged OpenSSH on my Debian systems
for several weeks. Yesterday I finally started the process of getting
OpenSSH up and running on all our Solaris boxes, to replace the
existing (patched) 1.2.27 non-free version. (Our in-house patches to
1.2.27 include generation of kernel-level audit data for both IRIX and
Solaris, and I want to port/contribute that code to OpenSSH).

What I did:
1. Installed a new fresh Solaris 7 box with all current Sun
recommended patches.
2. Downloaded and installed the precompiled GCC 2.95.2 and perl 5.005.03
from sunfreeware.com
3. Downloaded source code for the following, compiled and installed
with no problems:
- OpenSSL 0.9.5
- zlib 1.1.3
- egd 0.6
4. Downloaded OpenSSH 1.2.2 tarball, compiled and installed. Some
warnings, but nothing appeared significant.

Up to this point, everything looks fine. If I run ssh with no arguments,
then I get the expected usage error message.

If I try to ssh to a host that is running SSH, or I try to start the local
sshd, I get (with the appropriate program name in place of $0):
$0: no RSA support in libssl and libcrypto -- exiting. See ssl(8)

I've looked through the archives and glanced at the source, but nothing
jumps out as the obvious cause. Other folks seem to have OpenSSH up
on Solaris 7 already--so does anyone have any hints as I start trying to
RTFM and RTFS?

Note: After my first attempt blew up, I also tried (as an alternate
method) downloading, compiling, installing, and linking against RSAREF2.
That apparently worked okay, but the end result was the same. Any chance
that SSH found the correct libraries at compile time, but can't find them
at runtime?

--Rip
Re: Post-compile RSA error with 1.2.2, Solaris 7, OpenSSL 0.9.5 [ In reply to ]
bent at clark
Mar 1, 2000, 11:52 AM
Post #2 of 4 (627 views)
Permalink
On Wed, 1 Mar 2000, Rip Loomis wrote:

> If I try to ssh to a host that is running SSH, or I try to start the local
> sshd, I get (with the appropriate program name in place of $0):
> $0: no RSA support in libssl and libcrypto -- exiting. See ssl(8)
>
> I've looked through the archives and glanced at the source, but nothing
> jumps out as the obvious cause. Other folks seem to have OpenSSH up
> on Solaris 7 already--so does anyone have any hints as I start trying to
> RTFM and RTFS?
>
> Note: After my first attempt blew up, I also tried (as an alternate
> method) downloading, compiling, installing, and linking against RSAREF2.
> That apparently worked okay, but the end result was the same. Any chance
> that SSH found the correct libraries at compile time, but can't find them
> at runtime?

Rebuild openssl. It has links into the rsaref2 code. Other than
that, it sounds like my setup.

Ben
Re: Post-compile RSA error with 1.2.2, Solaris 7, OpenSSL 0.9.5 [ In reply to ]
rip at clark
Mar 1, 2000, 12:01 PM
Post #3 of 4 (623 views)
Permalink
Ben--
Sorry I wasn't clear in my first message. I *have*
rebuilt OpenSSL 0.9.5 linked against the RSAREF2 code,
but OpenSSH still can't find any RSA support. (The
error message is exactly the same). That tends to
indicate that the problem isn't in OpenSSL, it's
in the configuration of my local system or in the
way OpenSSH autoconf works. (Another message
asked if I was sure that RSA was enabled in
OpenSSL--the answer is yes, since I compiled
OpenSSL myself, and RSA is enabled by default).

It looks as though even though the autoconf notes
that it found OpenSSL, there's a problem with my
library paths such that libssl can't be found.
I'm not sure yet, but I'm guessing that the problem
is at runtime rather than compile time.

If anyone has other suggestions, feel free to send them
directly to me, and I'll summarize to the list
when I sort things out. Thanks--

--Rip

On Wed, 1 Mar 2000, Ben Taylor wrote:

> On Wed, 1 Mar 2000, Rip Loomis wrote:
>
> > If I try to ssh to a host that is running SSH, or I try to start the local
> > sshd, I get (with the appropriate program name in place of $0):
> > $0: no RSA support in libssl and libcrypto -- exiting. See ssl(8)
> >
> > I've looked through the archives and glanced at the source, but nothing
> > jumps out as the obvious cause. Other folks seem to have OpenSSH up
> > on Solaris 7 already--so does anyone have any hints as I start trying to
> > RTFM and RTFS?
> >
> > Note: After my first attempt blew up, I also tried (as an alternate
> > method) downloading, compiling, installing, and linking against RSAREF2.
> > That apparently worked okay, but the end result was the same. Any chance
> > that SSH found the correct libraries at compile time, but can't find them
> > at runtime?
>
> Rebuild openssl. It has links into the rsaref2 code. Other than
> that, it sounds like my setup.
>
> Ben
>
>
>
>
Re: Post-compile RSA error with 1.2.2, Solaris 7, OpenSSL 0.9.5 [ In reply to ]
bent at clark
Mar 1, 2000, 12:58 PM
Post #4 of 4 (626 views)
Permalink
On Wed, 1 Mar 2000, Rip Loomis wrote:

> It looks as though even though the autoconf notes
> that it found OpenSSL, there's a problem with my
> library paths such that libssl can't be found.
> I'm not sure yet, but I'm guessing that the problem
> is at runtime rather than compile time.

Generally when I configure openssh on solaris, I have to add
env LDFLAGS="-R/usr/local/lib -L/usr/local/lib -L/usr/local/lib/ssl" ./configure
to get it to build without intervention. I haven't had a whole lot
of time recently to work on this, but it sounds like this might be your
problem.

Ben

>
> If anyone has other suggestions, feel free to send them
> directly to me, and I'll summarize to the list
> when I sort things out. Thanks--
>
> --Rip
>
> On Wed, 1 Mar 2000, Ben Taylor wrote:
>
> > On Wed, 1 Mar 2000, Rip Loomis wrote:
> >
> > > If I try to ssh to a host that is running SSH, or I try to start the local
> > > sshd, I get (with the appropriate program name in place of $0):
> > > $0: no RSA support in libssl and libcrypto -- exiting. See ssl(8)
> > >
> > > I've looked through the archives and glanced at the source, but nothing
> > > jumps out as the obvious cause. Other folks seem to have OpenSSH up
> > > on Solaris 7 already--so does anyone have any hints as I start trying to
> > > RTFM and RTFS?
> > >
> > > Note: After my first attempt blew up, I also tried (as an alternate
> > > method) downloading, compiling, installing, and linking against RSAREF2.
> > > That apparently worked okay, but the end result was the same. Any chance
> > > that SSH found the correct libraries at compile time, but can't find them
> > > at runtime?
> >
> > Rebuild openssl. It has links into the rsaref2 code. Other than
> > that, it sounds like my setup.
> >
> > Ben
> >
> >
> >
> >
>

©2024 GT.net. A Gossamer Threads company.
5th Floor, 455 Granville St., Vancouver, BC V6C 1T1, Canada | Legal