Thread: [Ocf-linux-users] OpenSSH + GeodeLX + Linux + Cryptodev = Corrupted MAC on input.
Brought to you by:
david-m
Menu
▾
▴
ocf-linux-users
|
From:
<ga...@le...> - 2008-01-20 14:31:04
|
Hello, I just set up Debian Lenny on a PCEngines ALIX. This board have a GeodeLX processor with hardware crypto accelerator, so I patched my kernel to get cryptodev support. Everything is fine when playin with openssl, but openssh just crash when a large amount of data is transfered. A small example: alix:~# scp 100meg.test localhost:/dev/null root@localhost's password: 100meg.test 0% 0 0.0KB/s --:-- ETAReceived disconnect from 127.0.0.1: 2: Corrupted MAC on input. lost connection alix:~# If I unload cryptodev kernel modules, averything works fine again. I found theses guys who reported the same issue: http://www.docunext.com/wiki/My_Notes_on_Patching_2.6.22_with_OCF#The_Results http://sourceforge.net/mailarchive/forum.php?thread_name=6250b1390709260752k291cf279h1707ad0b382270bd%40mail.gmail.com&forum_name=ocf-linux-users Tested with OpenSSH 4.6p1 and 4.7p1. Any help would be appreciated. Best regards, Adam. PS: If you don't know at all what's wrong, could you please tell me how to disable cryptodev in sshd (without rebuilding the package wihout --with-ssl-engine) ? |
|
From: Albert L. <alb...@gm...> - 2008-01-20 15:06:33
|
Hi Adam, This might contain a fix that works submitted by Mello: http://www.docunext.com/blog/2007/09/25/geode-aes-ocf-cryptodev-openssl/ I haven't tried it out yet but I will within a week or two. Albert On Jan 20, 2008 9:31 AM, "Adam C=E9cile (Le_Vert)" <ga...@le...> wr= ote: > Hello, > > I just set up Debian Lenny on a PCEngines ALIX. This board have a > GeodeLX processor with hardware crypto accelerator, so I patched my > kernel to get cryptodev support. > Everything is fine when playin with openssl, but openssh just crash when > a large amount of data is transfered. > > A small example: > alix:~# scp 100meg.test localhost:/dev/null > root@localhost's password: > 100meg.test > 0% 0 0.0KB/s --:-- ETAReceived disconnect from 127.0.0.1: 2: > Corrupted MAC on input. > lost connection > alix:~# > > If I unload cryptodev kernel modules, averything works fine again. > > I found theses guys who reported the same issue: > http://www.docunext.com/wiki/My_Notes_on_Patching_2.6.22_with_OCF#The_Res= ults > http://sourceforge.net/mailarchive/forum.php?thread_name=3D6250b139070926= 0752k291cf279h1707ad0b382270bd%40mail.gmail.com&forum_name=3Docf-linux-user= s > > Tested with OpenSSH 4.6p1 and 4.7p1. > > Any help would be appreciated. > > Best regards, Adam. > > PS: If you don't know at all what's wrong, could you please tell me how > to disable cryptodev in sshd (without rebuilding the package wihout > --with-ssl-engine) ? > > ------------------------------------------------------------------------- > This SF.net email is sponsored by: Microsoft > Defy all challenges. Microsoft(R) Visual Studio 2008. > http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/ > _______________________________________________ > Ocf-linux-users mailing list > Ocf...@li... > https://lists.sourceforge.net/lists/listinfo/ocf-linux-users > --=20 My Blogs: http://www.docunext.com/ http://www.albertlash.com/ |
|
From:
<ga...@le...> - 2008-01-20 21:10:17
|
Hi, I just got geode-aes.c, geode-aes.h and geode-rng.c from Linux GIT and=20 rebuild the two kmod. Still the same issue. Albert Lash a =E9crit : > Hi Adam, > > This might contain a fix that works submitted by Mello: > > http://www.docunext.com/blog/2007/09/25/geode-aes-ocf-cryptodev-openssl= / > > I haven't tried it out yet but I will within a week or two. > > Albert > > On Jan 20, 2008 9:31 AM, "Adam C=E9cile (Le_Vert)" <ga...@le...= > wrote: > =20 >> Hello, >> >> I just set up Debian Lenny on a PCEngines ALIX. This board have a >> GeodeLX processor with hardware crypto accelerator, so I patched my >> kernel to get cryptodev support. >> Everything is fine when playin with openssl, but openssh just crash wh= en >> a large amount of data is transfered. >> >> A small example: >> alix:~# scp 100meg.test localhost:/dev/null >> root@localhost's password: >> 100meg.test >> 0% 0 0.0KB/s --:-- ETAReceived disconnect from 127.0.0.1: 2: >> Corrupted MAC on input. >> lost connection >> alix:~# >> >> If I unload cryptodev kernel modules, averything works fine again. >> >> I found theses guys who reported the same issue: >> http://www.docunext.com/wiki/My_Notes_on_Patching_2.6.22_with_OCF#The_= Results >> http://sourceforge.net/mailarchive/forum.php?thread_name=3D6250b139070= 9260752k291cf279h1707ad0b382270bd%40mail.gmail.com&forum_name=3Docf-linux= -users >> >> Tested with OpenSSH 4.6p1 and 4.7p1. >> >> Any help would be appreciated. >> >> Best regards, Adam. >> >> PS: If you don't know at all what's wrong, could you please tell me ho= w >> to disable cryptodev in sshd (without rebuilding the package wihout >> --with-ssl-engine) ? >> >> ----------------------------------------------------------------------= --- >> This SF.net email is sponsored by: Microsoft >> Defy all challenges. Microsoft(R) Visual Studio 2008. >> http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/ >> _______________________________________________ >> Ocf-linux-users mailing list >> Ocf...@li... >> https://lists.sourceforge.net/lists/listinfo/ocf-linux-users >> >> =20 > > > > =20 |
|
From: David M. <Dav...@se...> - 2008-01-24 05:34:02
|
Jivin "Adam Cécile (Le_Vert)" lays it down ... > Hi, > > I just got geode-aes.c, geode-aes.h and geode-rng.c from Linux GIT and > rebuild the two kmod. > Still the same issue. Sorry for the slow reply. I wasn't aware of any issues here. Just to be sure, which OCF release are you using ? I do have a geode board floating around here somewhere so I will try and give it a go soon, Thanks, Davidm > Albert Lash a écrit : > > Hi Adam, > > > > This might contain a fix that works submitted by Mello: > > > > http://www.docunext.com/blog/2007/09/25/geode-aes-ocf-cryptodev-openssl/ > > > > I haven't tried it out yet but I will within a week or two. > > > > Albert > > > > On Jan 20, 2008 9:31 AM, "Adam Cécile (Le_Vert)" <ga...@le...> wrote: > > > >> Hello, > >> > >> I just set up Debian Lenny on a PCEngines ALIX. This board have a > >> GeodeLX processor with hardware crypto accelerator, so I patched my > >> kernel to get cryptodev support. > >> Everything is fine when playin with openssl, but openssh just crash when > >> a large amount of data is transfered. > >> > >> A small example: > >> alix:~# scp 100meg.test localhost:/dev/null > >> root@localhost's password: > >> 100meg.test > >> 0% 0 0.0KB/s --:-- ETAReceived disconnect from 127.0.0.1: 2: > >> Corrupted MAC on input. > >> lost connection > >> alix:~# > >> > >> If I unload cryptodev kernel modules, averything works fine again. > >> > >> I found theses guys who reported the same issue: > >> http://www.docunext.com/wiki/My_Notes_on_Patching_2.6.22_with_OCF#The_Results > >> http://sourceforge.net/mailarchive/forum.php?thread_name=6250b1390709260752k291cf279h1707ad0b382270bd%40mail.gmail.com&forum_name=ocf-linux-users > >> > >> Tested with OpenSSH 4.6p1 and 4.7p1. > >> > >> Any help would be appreciated. > >> > >> Best regards, Adam. > >> > >> PS: If you don't know at all what's wrong, could you please tell me how > >> to disable cryptodev in sshd (without rebuilding the package wihout > >> --with-ssl-engine) ? > >> > >> ------------------------------------------------------------------------- > >> This SF.net email is sponsored by: Microsoft > >> Defy all challenges. Microsoft(R) Visual Studio 2008. > >> http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/ > >> _______________________________________________ > >> Ocf-linux-users mailing list > >> Ocf...@li... > >> https://lists.sourceforge.net/lists/listinfo/ocf-linux-users > >> > >> > > > > > > > > > > > ------------------------------------------------------------------------- > This SF.net email is sponsored by: Microsoft > Defy all challenges. Microsoft(R) Visual Studio 2008. > http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/ > _______________________________________________ > Ocf-linux-users mailing list > Ocf...@li... > https://lists.sourceforge.net/lists/listinfo/ocf-linux-users > -- David McCullough, dav...@se..., Ph:+61 734352815 Secure Computing - SnapGear http://www.uCdot.org http://www.cyberguard.com |
×
Want the latest updates on software, tech news, and AI?
Get latest updates about software, tech news, and AI from SourceForge directly in your inbox once a month.
Thanks for helping keep SourceForge clean.
X