[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Problems running tarsnap-keygen



Hi James,

James Montgomerie wrote:
> On 9 Oct 2009, at 20:30, Colin Percival wrote:
>> James Montgomerie wrote:
>>> tarsnap-keygen: error in AES_set_encrypt_key
>>
>> Wow, that's a weird error -- that's an OpenSSL function which is
>> failing, and
>> there's really no good reason why it should ever fail.  Can you check
>> which
>> version of OpenSSL you have installed?
> 
> [~/admin] things$ openssl version
> OpenSSL 0.9.8k 25 Mar 2009

Ok, google tells me that for some dumb reason Solaris ships with a version of
OpenSSL without support for AES-256 (and that lots of other people are getting
irritated with this).  Can you check which version of OpenSSL the tarsnap
binaries are linked to?  (On BSD, `ldd tarsnap-keygen` will do this -- I'm not
sure if it's the same command on Solaris.)

My guess is that you have two versions of OpenSSL installed and tarsnap is being
linked to the broken one which came with Solaris.

-- 
Colin Percival
Security Officer, FreeBSD | freebsd.org | The power to serve
Founder / author, Tarsnap | tarsnap.com | Online backups for the truly paranoid