With bounds checking patch for gcc-3.1 problems if using AES
Daniel Schröter
d.schroeter at gmx.de
Tue Jul 16 04:57:08 EST 2002
Hello,
I'm back from holidays and I tried today the patch from Markus Friedl.
There is a
#ifndef SSH_OLD_EVP
in "my" cipher.c file so it looks now this way:
rijndal_cbc.cleanup = ssh_rijndael_cleanup;
rijndal_cbc.do_cipher = ssh_rijndael_cbc;
#ifndef SSH_OLD_EVP
rijndal_cbc.flags = EVP_CIPH_CBC_MODE | EVP_CIPH_VARIABLE_LENGTH |
EVP_CIPH_ALWAYS_CALL_INIT | EVP_CIPH_CUSTOM_IV;
#endif
return (&rijndal_cbc);
}
#endif
With this patch it looks good :-)
[~/src/openssh/openssh-3.4p1.diff.test]$ export
GCC_BOUNDS_OPTS="-no-message -no-statistics"
[~/src/openssh/openssh-3.4p1.diff.test]$ ./ssh localhost
[...]
debug1: kex: server->client aes128-cbc hmac-md5 none
debug1: kex: client->server aes128-cbc hmac-md5 none
[...]
test at localhost's password:
Thanks for your help!
Bye
Daniel
--
=========================================================
PGP keyID: 9EA3FF2C
$ gpg --keyserver wwwkeys.de.pgp.net --recv-key 9EA3FF2C
=========================================================
More information about the openssh-unix-dev
mailing list