manage_agent bulk load fails

[ccx004]

manage_agents -f /tmp/agents fails with "file not found". I have since worked out that it does a chroot to /var/ossec and that is why it cannot find the files. So this is a query and a suggestion. The query is, is there any need for this program to do a chroot? The suggestion is to add some text to the help message that manage_agents -? produces to say that the file must be stored in the /var/ossec file structure somewhere.

Best wishes...
Colin

[ddpbsd]

Taking a quick look at it, I see a call to nowChroot() in main.c. So manage_agents chroots to /var/ossec. Trying to load the file relative to this chroot (bin/manage_agents -f bin/xxx) gives a different error:
randombytes failed for all possible methods for accessing random data

So it appears there is a call to srandom_init() that happens after the chroot.

[ddpbsd]

It appears to work with a dev/random and dev/urandom available.

[jrossi]

Srandom_init must happe. Before chroot

[ddpbsd]

@jrossi unfortunately there are 3 srandom_init() calls, and 2 aren't as easy as moving them up a few lines (validate.c being one example). That's definitely the issue, but I don't know how to fix it off hand.

[jrossi]

Yeah a lot of the utils and management cli apps suffer from copy and paste code hell. The real only way to fix to start refactoring out things into shared or another common location. This will take some work.

[awiddersheim]

This is a big breaking fix if bulk loads don't work in 2.9. Probably should fix this before it's released.

[coffmant]

There is a similar (same?) issue on the client side.

manage_agents(1128): ERROR: Could not create temporary file
'tmp/client.keys55sUAS' due to [(2)-(No such file or directory)].

[Fadavvi]

Any work around??

[sarah336]

Circle :)

[Fadavvi]

:)))