Itus Networks Owners Forum Technical Discussion
Login  Register

Re: DROWN attacks vs openssl

Posted by hans2 on Mar 04, 2016; 10:07pm
URL: https://itus.accessinnov.com/DROWN-attacks-vs-openssl-tp255p289.html

Roadrunnere42 wrote
I removed the file as you said and ran the following

 opkg install --force-reinstall ./openssl-util_1.0.2g-1_octeon.ipk

No packages removed.
Installing openssl-util (1.0.2g-1) to root...
Collected errors:
 * check_data_file_clashes: Package openssl-util wants to install file /usr/bin/openssl
        But that file is already provided by package  * ohns
 * opkg_install_cmd: Cannot install package openssl-util.

I then ran

opkg info openssl-util
Package: openssl-util
Version: 1.0.2g-1
Depends: libc, libopenssl
Status: install prefer,user not-installed
Architecture: octeon
Conffiles:
 /etc/ssl/openssl.cnf 06baa8f15992bacd3e5b113cd571d828c0


so am i running 1.02g-1 already

roadrunnere42
This is what I got on a 1.51SP1 clean (!) router-mode shield: 

root@Shield:/# cat /etc/opkg.conf
dest root /
dest ram /tmp
lists_dir ext /var/opkg-lists
option overlay_root /overlay
src/gz chaos_calmer_base http://downloads.openwrt.org/chaos_calmer/15.05-rc3/octeon/generic/packages/base
src/gz chaos_calmer_luci http://downloads.openwrt.org/chaos_calmer/15.05-rc3/octeon/generic/packages/luci
src/gz chaos_calmer_management http://downloads.openwrt.org/chaos_calmer/15.05-rc3/octeon/generic/packages/management
src/gz chaos_calmer_packages http://downloads.openwrt.org/chaos_calmer/15.05-rc3/octeon/generic/packages/packages
src/gz chaos_calmer_routing http://downloads.openwrt.org/chaos_calmer/15.05-rc3/octeon/generic/packages/routing
src/gz chaos_calmer_telephony http://downloads.openwrt.org/chaos_calmer/15.05-rc3/octeon/generic/packages/telephony
# src/gz chaos_calmer_targets http://downloads.openwrt.org/chaos_calmer/15.05-rc3/octeon/generic/packages/targets
#option check_signature 1
arch cn70xx 100
arch octeon 200
arch all 300
root@Shield:/# openssl version
OpenSSL 1.0.2d 9 Jul 2015
root@Shield:/# curl -k https://downloads.openwrt.org/chaos_calmer/15.05/octeon/generic/packages/base/openssl-util_1.0.2g-1_octeon.ipk -o openssl-util_1.0.2g-1_octeon.ipk
  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
                                 Dload  Upload   Total   Spent    Left  Speed
100  188k  100  188k    0     0   119k      0  0:00:01  0:00:01 --:--:--  120k
root@Shield:/# ls -al
drwxr-xr-x   17 root     root          4096 Nov 26 03:01 .
drwxr-xr-x   17 root     root          4096 Nov 26 03:01 ..
drwxr-xr-x    2 root     root          4096 Nov 26 03:01 bin
drwxr-xr-x    5 root     root         11280 Nov 26 03:00 dev
drwxrwxr-x   26 root     root          4096 Nov 26 03:01 etc
drwxr-xr-x    3 root     root          4096 Nov 26 03:01 include
-rwxrwxr-x    1 root     root          1647 May  4  2015 init
drwxr-xr-x   12 root     root          4096 Nov 10 05:39 lib
lrwxrwxrwx    1 root     root             3 Nov 26 03:01 lib64 -> lib
drwx------    2 root     root         16384 Nov 26 03:01 lost+found
drwxr-xr-x    2 root     root          4096 May  4  2015 mnt
-rw-r--r--    1 root     root        193192 Nov 26 03:01 openssl-util_1.0.2g-1_octeon.ipk
dr-xr-xr-x   73 root     root             0 Jan  1  1970 proc
drwxrwxr-x    2 root     root          4096 Nov 26 03:01 rom
drwxr-xr-x    2 root     root          4096 May  4  2015 root
drwxr-xr-x    2 root     root          4096 Nov 26 03:01 sbin
dr-xr-xr-x   11 root     root             0 Jan  1  1970 sys
drwxrwxrwt   18 root     root           480 Nov 26 03:01 tmp
drwxr-xr-x    8 root     root          4096 Aug 20 03:18 usr
lrwxrwxrwx    1 root     root             4 Nov 26 03:01 var -> /tmp
drwxrwxr-x    6 root     root          4096 Nov 26 03:01 www
root@Shield:/# opkg install ./openssl-util_1.0.2g-1_octeon.ipk
root@Shield:/# openssl version
OpenSSL 1.0.2d 9 Jul 2015
root@Shield:/# env
SHLVL=2
OLDPWD=/overlay
HOME=/root
PS1=\u@\h:\w\$
TERM=linux
serial#=my_sandbox
PATH=/usr/bin:/usr/sbin:/bin:/sbin
numcores=2
PWD=/
root@Shield:/# env
root@Shield:/# opkg install ./openssl-util_1.0.2g-1_octeon.ipk
Upgrading openssl-util on root from 1.0.2a-0 to 1.0.2g-1...
Configuring openssl-util.
root@Shield:/# openssl version
/bin/ash: openssl: not found
root@Shield:/#  opkg install --force-reinstall ./openssl-util_1.0.2g-1_octeon.ipk
No packages removed.
Installing openssl-util (1.0.2g-1) to root...
Collected errors:
 * check_data_file_clashes: Package openssl-util wants to install file /usr/bin/openssl
        But that file is already provided by package  * o_Velho
 * opkg_install_cmd: Cannot install package openssl-util.
root@Shield:/# openssl version
/bin/ash: openssl: not found
No more: Shield Pro v1, Chaos Calmer, FW 1.51 SP1
Free forum by Nabble Edit this page