Displaying 12 results from an estimated 12 matches for "bn_free".
2017 Jun 23
5
OpenSSL 1.1 support status : what next?
...that as well.
>>
>> But since nobody will step in, one has to do the job. Luckily, many has
>> jumped in (and I was ready to do that as well). Their shim code is, as
>> expected, quite clear and it should be easy to spot anything suspicious or
>> wrong (I suspect some BN_free() should be replaced with BN_clear_free()
>> here and there, but for most part the BN_free() directly comes from the
>> openssl code).
>>
>> The fact is that most added functions are setters and getters, so until you
>> do things in the Widely Wrong Way, it should be o...
2017 Jun 23
2
OpenSSL 1.1 support status : what next?
...s
> of additional code.
And I fully get that as well.
But since nobody will step in, one has to do the job. Luckily, many has
jumped in (and I was ready to do that as well). Their shim code is, as
expected, quite clear and it should be easy to spot anything suspicious or
wrong (I suspect some BN_free() should be replaced with BN_clear_free()
here and there, but for most part the BN_free() directly comes from the
openssl code).
The fact is that most added functions are setters and getters, so until you
do things in the Widely Wrong Way, it should be ok :) I'm not talking about
rewrite RSA_p...
2017 Jun 19
1
OpenSSL 1.1.0 support and RSA_set0_key() double frees?
...http://pkgs.fedoraproject.org/cgit/rpms/openssh.git/tree/openssh-7.3p1-openssl-1.1.0.patch#n3344
as shown in the below snippet:
/* calculate p-1 and q-1 */
- if ((r = rsa_generate_additional_parameters(prv->rsa)) != 0)
+ if ((r = rsa_generate_additional_parameters(prv->rsa, iqmp)) != 0)
+ BN_free(iqmp);
goto out;
/* enable blinding */
FYI,
venkat
2015 Mar 24
5
[Bug 2371] New: make check fails when using --without-openssl on AIX
....a -lssh -lopenbsd-compat
-lssh -lopenbsd-compat -lz -lcrypt
ld: 0711-317 ERROR: Undefined symbol: .BN_hex2bn
ld: 0711-317 ERROR: Undefined symbol: .BN_num_bits
ld: 0711-317 ERROR: Undefined symbol: .BN_bn2bin
ld: 0711-317 ERROR: Undefined symbol: .BN_bin2bn
ld: 0711-317 ERROR: Undefined symbol: .BN_free
ld: 0711-317 ERROR: Undefined symbol: .BN_new
ld: 0711-317 ERROR: Undefined symbol: .BN_clear_free
ld: 0711-317 ERROR: Undefined symbol: .BN_cmp
ld: 0711-317 ERROR: Undefined symbol: .BN_bn2hex
ld: 0711-317 ERROR: Undefined symbol: .ERR_get_error
ld: 0711-317 ERROR: Undefined symbol: .ERR_error_str...
2015 Mar 24
5
[Bug 2371] New: make check fails when using --without-openssl on AIX
....a -lssh -lopenbsd-compat
-lssh -lopenbsd-compat -lz -lcrypt
ld: 0711-317 ERROR: Undefined symbol: .BN_hex2bn
ld: 0711-317 ERROR: Undefined symbol: .BN_num_bits
ld: 0711-317 ERROR: Undefined symbol: .BN_bn2bin
ld: 0711-317 ERROR: Undefined symbol: .BN_bin2bn
ld: 0711-317 ERROR: Undefined symbol: .BN_free
ld: 0711-317 ERROR: Undefined symbol: .BN_new
ld: 0711-317 ERROR: Undefined symbol: .BN_clear_free
ld: 0711-317 ERROR: Undefined symbol: .BN_cmp
ld: 0711-317 ERROR: Undefined symbol: .BN_bn2hex
ld: 0711-317 ERROR: Undefined symbol: .ERR_get_error
ld: 0711-317 ERROR: Undefined symbol: .ERR_error_str...
2015 Jun 23
2
Call for testing: OpenSSH 6.9
...gress/unittests/bitmap/tests.c
index 23025f9..2271e94 100644
--- a/regress/unittests/bitmap/tests.c
+++ b/regress/unittests/bitmap/tests.c
@@ -27,6 +27,7 @@
void
tests(void)
{
+#ifdef WITH_OPENSSL
struct bitmap *b;
BIGNUM *bn;
size_t len;
@@ -131,5 +132,6 @@ tests(void)
bitmap_free(b);
BN_free(bn);
TEST_DONE();
+#endif /* WITH_OPENSSL */
}
diff --git a/regress/unittests/hostkeys/test_iterate.c b/regress/unittests/hostkeys/test_iterate.c
index 2eaaf06..da0e353 100644
--- a/regress/unittests/hostkeys/test_iterate.c
+++ b/regress/unittests/hostkeys/test_iterate.c
@@ -92,12 +92,22 @@ ch...
2017 Jun 24
2
OpenSSL 1.1 support status : what next?
...ey, BIGNUM *priv_key)
> {
> /* If the field pub_key in dh is NULL, the corresponding input
> * parameters MUST be non-NULL. The priv_key field may
> * be left NULL.
> */
> if (dh->pub_key == NULL && pub_key == NULL)
> return 0;
>
> if (pub_key != NULL) {
> BN_free(dh->pub_key);
> dh->pub_key = pub_key;
> }
> if (priv_key != NULL) {
> BN_free(dh->priv_key);
> dh->priv_key = priv_key;
> }
>
> return 1;
> }
>
> ?int RSA_bits(const RSA *r)
> {
> return (BN_num_bits(r->n));
> }
> ?---->8-----
>...
2017 Jun 22
2
OpenSSL 1.1 support status : what next?
Hello everybody,
? ?
I saw that another discussion about OpenSSL 1.1 support started on this
list, and I'd like to know what is the current status about this.
>From what I understand, at least
?one
patch set already exists:
? ?
a github PR [1] from , Kurt Roeckx announced on the list in september 2016
[2]
? and which also exist as a fedora patch [3]? (I haven't checked the
details,
2015 Jun 25
3
Call for testing: OpenSSH 6.9
On Thu, 25 Jun 2015, Michael Felt wrote:
> Just running a standard make, and then a make install to a packaging
> directory. It seems to be complaining about missing keys - not sure yet if
> this is a show stopper
For packaging you want the install-nokeys rule not install.
--
Tim Rice Multitalents
tim at multitalents.net
2000 Jul 19
2
Why do I *still* need RSA?
OpenSSH Developers,
I'm researching whether or not OpenSSH is a viable commercial
alternative to F-SECURE SSH or SSH.COM's ssh, but I'm not getting the
kind of results that I expected from a "Non patent encumbered ssh
client".
When I attempt to build OpenSSH against an OpenSSL build without rc5,
idea, or rsa it bombs since OpenSSL doesn't place the header files in
the
2015 May 29
16
Call for testing: OpenSSH 6.9
Hi,
OpenSSH 6.9 is almost ready for release, so we would appreciate testing
on as many platforms and systems as possible. This release contains
some substantial new features and a number of bugfixes.
Snapshot releases for portable OpenSSH are available from
http://www.mindrot.org/openssh_snap/
The OpenBSD version is available in CVS HEAD:
http://www.openbsd.org/anoncvs.html
Portable OpenSSH is
2015 Mar 24
12
[Bug 2370] New: make fails with "rmd160.c", line 35.10: 1506-296 (S) #include file <endian.h> not found. when using --without-openssl on AIX
https://bugzilla.mindrot.org/show_bug.cgi?id=2370
Bug ID: 2370
Summary: make fails with "rmd160.c", line 35.10: 1506-296 (S)
#include file <endian.h> not found. when using
--without-openssl on AIX
Product: Portable OpenSSH
Version: 6.9p1
Hardware: Other
OS: AIX