Problem: CURVE mechanism is unusable with chroot()

libsodium calls abort() when /dev/urandom can't be found even if one creates ZeroMQ context before calling chroot()[1]. This happens because crypto gets initialized on handshake, and at that moment the process is already chroot'ed. Solution: initialize cryptographic libraries in ctx randombytes_close() is already there in the destructor. [1] https://download.libsodium.org/doc/usage/index.html
2025-11-11 00:44:50 +01:00 · 2016-03-30 02:23:56 +05:00
parent 05c8de7928
commit 884e00cb4a
6 changed files with 15 additions and 25 deletions
--- a/src/curve_server.hpp
+++ b/src/curve_server.hpp
@@ -129,7 +129,6 @@ namespace zmq

        void send_zap_request (const uint8_t *key);
        int receive_and_process_zap_reply ();
-        mutex_t sync;
    };

 }