search for: bn_free

...that as well. >> >> But since nobody will step in, one has to do the job. Luckily, many has >> jumped in (and I was ready to do that as well). Their shim code is, as >> expected, quite clear and it should be easy to spot anything suspicious or >> wrong (I suspect some BN_free() should be replaced with BN_clear_free() >> here and there, but for most part the BN_free() directly comes from the >> openssl code). >> >> The fact is that most added functions are setters and getters, so until you >> do things in the Widely Wrong Way, it should be o...

...s > of additional code. And I fully get that as well. But since nobody will step in, one has to do the job. Luckily, many has jumped in (and I was ready to do that as well). Their shim code is, as expected, quite clear and it should be easy to spot anything suspicious or wrong (I suspect some BN_free() should be replaced with BN_clear_free() here and there, but for most part the BN_free() directly comes from the openssl code). The fact is that most added functions are setters and getters, so until you do things in the Widely Wrong Way, it should be ok :) I'm not talking about rewrite RSA_p...

...http://pkgs.fedoraproject.org/cgit/rpms/openssh.git/tree/openssh-7.3p1-openssl-1.1.0.patch#n3344 as shown in the below snippet: /* calculate p-1 and q-1 */ - if ((r = rsa_generate_additional_parameters(prv->rsa)) != 0) + if ((r = rsa_generate_additional_parameters(prv->rsa, iqmp)) != 0) + BN_free(iqmp); goto out; /* enable blinding */ FYI, venkat

....a -lssh -lopenbsd-compat -lssh -lopenbsd-compat -lz -lcrypt ld: 0711-317 ERROR: Undefined symbol: .BN_hex2bn ld: 0711-317 ERROR: Undefined symbol: .BN_num_bits ld: 0711-317 ERROR: Undefined symbol: .BN_bn2bin ld: 0711-317 ERROR: Undefined symbol: .BN_bin2bn ld: 0711-317 ERROR: Undefined symbol: .BN_free ld: 0711-317 ERROR: Undefined symbol: .BN_new ld: 0711-317 ERROR: Undefined symbol: .BN_clear_free ld: 0711-317 ERROR: Undefined symbol: .BN_cmp ld: 0711-317 ERROR: Undefined symbol: .BN_bn2hex ld: 0711-317 ERROR: Undefined symbol: .ERR_get_error ld: 0711-317 ERROR: Undefined symbol: .ERR_error_str...

....a -lssh -lopenbsd-compat -lssh -lopenbsd-compat -lz -lcrypt ld: 0711-317 ERROR: Undefined symbol: .BN_hex2bn ld: 0711-317 ERROR: Undefined symbol: .BN_num_bits ld: 0711-317 ERROR: Undefined symbol: .BN_bn2bin ld: 0711-317 ERROR: Undefined symbol: .BN_bin2bn ld: 0711-317 ERROR: Undefined symbol: .BN_free ld: 0711-317 ERROR: Undefined symbol: .BN_new ld: 0711-317 ERROR: Undefined symbol: .BN_clear_free ld: 0711-317 ERROR: Undefined symbol: .BN_cmp ld: 0711-317 ERROR: Undefined symbol: .BN_bn2hex ld: 0711-317 ERROR: Undefined symbol: .ERR_get_error ld: 0711-317 ERROR: Undefined symbol: .ERR_error_str...

...gress/unittests/bitmap/tests.c index 23025f9..2271e94 100644 --- a/regress/unittests/bitmap/tests.c +++ b/regress/unittests/bitmap/tests.c @@ -27,6 +27,7 @@ void tests(void) { +#ifdef WITH_OPENSSL struct bitmap *b; BIGNUM *bn; size_t len; @@ -131,5 +132,6 @@ tests(void) bitmap_free(b); BN_free(bn); TEST_DONE(); +#endif /* WITH_OPENSSL */ } diff --git a/regress/unittests/hostkeys/test_iterate.c b/regress/unittests/hostkeys/test_iterate.c index 2eaaf06..da0e353 100644 --- a/regress/unittests/hostkeys/test_iterate.c +++ b/regress/unittests/hostkeys/test_iterate.c @@ -92,12 +92,22 @@ ch...

...ey, BIGNUM *priv_key) > { > /* If the field pub_key in dh is NULL, the corresponding input > * parameters MUST be non-NULL. The priv_key field may > * be left NULL. > */ > if (dh->pub_key == NULL && pub_key == NULL) > return 0; > > if (pub_key != NULL) { > BN_free(dh->pub_key); > dh->pub_key = pub_key; > } > if (priv_key != NULL) { > BN_free(dh->priv_key); > dh->priv_key = priv_key; > } > > return 1; > } > > ?int RSA_bits(const RSA *r) > { > return (BN_num_bits(r->n)); > } > ?---->8----- >...

Hello everybody, ? ? I saw that another discussion about OpenSSL 1.1 support started on this list, and I'd like to know what is the current status about this. >From what I understand, at least ?one patch set already exists: ? ? a github PR [1] from , Kurt Roeckx announced on the list in september 2016 [2] ? and which also exist as a fedora patch [3]? (I haven't checked the details,

On Thu, 25 Jun 2015, Michael Felt wrote: > Just running a standard make, and then a make install to a packaging > directory. It seems to be complaining about missing keys - not sure yet if > this is a show stopper For packaging you want the install-nokeys rule not install. -- Tim Rice Multitalents tim at multitalents.net

OpenSSH Developers, I'm researching whether or not OpenSSH is a viable commercial alternative to F-SECURE SSH or SSH.COM's ssh, but I'm not getting the kind of results that I expected from a "Non patent encumbered ssh client". When I attempt to build OpenSSH against an OpenSSL build without rc5, idea, or rsa it bombs since OpenSSL doesn't place the header files in the

Hi, OpenSSH 6.9 is almost ready for release, so we would appreciate testing on as many platforms and systems as possible. This release contains some substantial new features and a number of bugfixes. Snapshot releases for portable OpenSSH are available from http://www.mindrot.org/openssh_snap/ The OpenBSD version is available in CVS HEAD: http://www.openbsd.org/anoncvs.html Portable OpenSSH is

https://bugzilla.mindrot.org/show_bug.cgi?id=2370 Bug ID: 2370 Summary: make fails with "rmd160.c", line 35.10: 1506-296 (S) #include file <endian.h> not found. when using --without-openssl on AIX Product: Portable OpenSSH Version: 6.9p1 Hardware: Other OS: AIX