[dtucker@zip.com.au - Sat Feb 19 11:06:08 2005]:

> Hi.
> We had a report of sshd looping and eating CPU under some conditions
> (reference below). The original report was on Solaris 8, we had other on
> HP-UX 11.11 and I have reproduced it on HP-UX 11.00. It can probably
> occur on any platform using egd or prngd for entropy.
>
> The cause of the CPU utilization appears to be a bug in OpenSSL's
> egd/prngd interface. It seems that when reading from prngd, the read
> loop does not test for a return of zero indicating the descriptor has
> closed, and will retry the read() ad infinitum if that happens. At this
> time, I am not sure why/how the descriptor ends up closed, however I have
> found a way to reproduce the problem at will.


Thanks, your patch to OpenSSL is obviously correct. (That will still leave the
issue of PRNGD not working correctly, but this is not an OpenSSL problem :-)

Patch applied to OpenSSL 0.9.7-stable (to become 0.9.7f) and openssl-dev
Best regards,
Lutz

__________________________________________________ ____________________
OpenSSL Project http://www.openssl.org
Development Mailing List openssl-dev@openssl.org
Automated List Manager majordomo@openssl.org