Create a gist now

Instantly share code, notes, and snippets.

What would you like to do?
List of files in the (current) tinderbox that require RAND_egd()
# Updated 2014-08-05
RAND_egd /opt/scratchbox/host_shared/lib/libcurl.so.3.0.0
RAND_egd /opt/scratchbox/tools/lib/python2.3/lib-dynload/_ssl.so
RAND_egd /opt/scratchbox/tools/bin/wget
RAND_egd /opt/scratchbox/tools/bin/w3m
RAND_egd /opt/SpiderOak/lib/libcurl.so.4
RAND_egd /opt/SpiderOak/lib/_ssl.so
RAND_egd /opt/tivoli/tsm/client/ba/bin/libcurl.so.4
RAND_egd /opt/Adobe/Reader9/Reader/intellinux/lib/libcurl.so.3.0.0
RAND_egd /usr/lib64/php5.5/apache2/libphp5.so
RAND_egd /usr/lib64/php5.5/bin/php
RAND_egd /usr/lib64/php5.5/bin/php-cgi
RAND_egd /usr/lib64/php5.5/bin/php-fpm
RAND_egd /usr/lib64/apache2/modules/mod_ssl.so
RAND_egd /usr/lib64/shadowircd/libratbox.so
RAND_egd /usr/lib64/python3.4/lib-dynload/_ssl.cpython-34.so
RAND_egd /usr/lib64/ruby/1.9.1/x86_64-linux/openssl.so
RAND_egd /usr/lib64/charybdis/libratbox.so
RAND_egd /usr/lib64/libtcnative-1.so.0.1.30
RAND_egd /usr/lib64/python2.7/site-packages/cryptography/_Cryptography_cffi_79a5b0a3x3a8a382.so
RAND_egd /usr/lib64/python2.7/lib-dynload/_ssl.so
RAND_egd /usr/lib64/libACE_SSL-5.7.2.so
RAND_egd /usr/lib64/python3.3/site-packages/cryptography/_Cryptography_cffi_4f32d02dx3a8a382.cpython-33.so
RAND_egd /usr/lib64/python3.3/lib-dynload/_ssl.cpython-33.so
RAND_egd /usr/lib64/python3.2/lib-dynload/_ssl.cpython-32.so
RAND_egd /usr/lib64/libIceSSL.so.3.5.1
RAND_egd /usr/lib64/pypy/libpypy-c.so
RAND_egd /usr/lib64/perl5/vendor_perl/5.18.2/x86_64-linux-thread-multi/auto/Crypt/OpenSSL/Random/Random.so
RAND_egd /usr/lib32/libcurl.so.4.3.0
RAND_egd /usr/bin/w3mmee
RAND_egd /usr/bin/links
RAND_egd /usr/bin/wget
RAND_egd /usr/bin/stunnel
RAND_egd /usr/bin/unrealircd
RAND_egd /usr/bin/socat
RAND_egd /usr/bin/edbrowse
RAND_egd /usr/bin/elinks
RAND_egd /usr/bin/openssl
RAND_egd /usr/bin/pavuk
RAND_egd /usr/bin/w3m
Owner

Flameeyes commented Jul 19, 2014

As promised in my blog post.

Owner

Flameeyes commented Jul 19, 2014

A few notes: the tinderbox is currently quite out of date, so I'm working on clearing that up, but it's not easy; it was built with USE=gnutls globally to test gnutls-3 so there are definitely a few things missing, such as wget (which already has a patch).

lu-zero commented Jul 19, 2014

The list is interesting already =)

Simba7 commented Jul 20, 2014

Why two different copies of php, python3, and ruby?. The only two copies of Python, that I use, is 2.7 and 3.3 (hope 3.4 eventually).

I build most of my boxes with gnutls. Just do an emerge --update and you'll be fine. It looks like you've got a little pruning to do. Just be careful.

Owner

Flameeyes commented Jul 20, 2014

This is built with USE=gnutls globally so no, using gnutls does not "save" you anything, especially as people noted how gnutls isn't any better than OpenSSL/LibreSSL at this point.

maurerpe commented Aug 9, 2014

The gentoo bug for libressl is 508750. https://bugs.gentoo.org/show_bug.cgi?id=508750 I have added a note linking to this list on the bug.

Many of packages above already have a patch on an overlay on github: https://github.com/maurerpe/libressl

You mentioned curl in one of your recent blog posts. It is one of the more interesting cases. curl links against RAND_egd, but builds and runs fine against libressl out of the box because it contains a configure check to detect the presence of RAND_egd. I have a patch anyway because it is not able to correctly detect the version of libressl in the configure script, even though this version number isn't used for anything. See maurerpe/libressl@1c4d2ae

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment