Manualshelf

HP-UX Trusted Computing Services A.02.00 Administrator's Guide

ManualsBrandsHP ManualsSoftwareHP-UX Trusted Computing Services (TCS) Software
81828384858687888990
debug1: key_load_engine_private() done: type <unknown>
debug1: engine key load attempted, index: #0
Could not load host key: /opt/foo/sshblob
Disabling protocol version 2. Could not load host key
sshd: no hostkeys available -- exiting.
This message indicates a problem opening the OpenSSL configuration file specified by the
parameter EngineConfigFile in the sshd configuration file. Verify the filename specified
by EngineConfigFile.
debug1: sshd version OpenSSH_5.0p1+sftpfilecontrol-v1.2-hpn13v1 [ HP-UX Secure Shell-A.05.00.029 ]
Engine configuration failed
debug1: key_load_engine_private() done: type <unknown>
debug1: engine key load attempted, index: #0
Could not load host key: /opt/foo/sshblob
Disabling protocol version 2. Could not load host key
sshd: no hostkeys available -- exiting.
This message indicates a problem with the contents of the OpenSSL configuration file used
for sshd. The OpenSSL configuration file is specified by the parameter EngineConfigFile
in the sshd configuration file. See “Step 4: Installing and Modifying the OpenSSL
Configuration File” (page 58) for a description of the required contents.
'/usr/lib/hpux32/engines/libtpm.so.0' is not a valid load module: Bad magic number
:
:
Engine configuration failed
This message indicates that you specified the TPM OpenSSL library with the wrong compiler
data model (32 bit instead of 64 bit in this example) for the dynamic_path parameter in
the OpenSSL configuration file. See “Step 4: Installing and Modifying the OpenSSL
Configuration File” (page 58) for the correct library specification.
21361:error:25066067:lib(37):func(102):reason(103):dso_dlfcn.c:157:filename(/opt
/tcs/lib/hpux64/libtpm.so.0): Unable to find library '/opt/tcs/lib/hpux64/libtpm.so.0'.
:
:
Engine configuration failed
This message indicates that you specified a nonexistent file for the dynamic_path parameter
in the OpenSSL configuration file. In this example, the user specified /opt/tcs/lib/
hpux64/libtpm.so.0 instead of /opt/tcs/lib/hpux64/engines/libtpm.so.0.
Troubleshooting TCS Operation with EVFS
To troubleshoot TCS-EVFS integration, follow these steps:
1. Verify that tcsd is running using the tpmlist status command. If tcsd is not running,
see “Troubleshooting tcsd” (page 79).
2. Verify the contents of the /etc/evfs/evfs.conf file. Verify there are no typographic
errors in the keywrap and the pbe parameters.
3. Verify that the /usr/lib/evfs/hpux64/libevfs_pbe.so symbolic link points to the
/opt/tcs/lib/hpux64/libevfs_pbe.so1 file, and verify that both these files exist.
84 TCS Troubleshooting and Known Issues