With bounds checking patch for gcc-3.1 problems if using AES
Gert Doering
gert at greenie.muc.de
Wed Jul 10 03:31:04 EST 2002
Hi,
On Tue, Jul 09, 2002 at 07:07:48PM +0000, Daniel Schr?ter wrote:
> The line 105 in file openssl-0.9.6d/crypto/evp/evp_enc.c is (maybe) the
> problem.:
>
> memcpy(ctx->iv, ctx->oiv, EVP_CIPHER_CTX_iv_length(ctx));
>
> So I take an update to
> ftp://ftp.openssl.org/snapshot/openssl-SNAP-20020707.tar.gz
> and it works fine. Also the Beta2 from openssl-0.9.7 works fine.
Thanks for pointing that out. It might explain the problems I have
with ssh -2 on FreeBSD 2.2.x - everything core dumps as soon as it
hits a DSA or RSA2 key. Possibly the memcpy in 2.2 works "the other way
round" as compared to 3.x and 4.x, and thus it bombs there.
I will try that approach as soon as 0.9.7 is officially released...
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany gert at greenie.muc.de
fax: +49-89-35655025 gert.doering at physik.tu-muenchen.de
More information about the openssh-unix-dev
mailing list