diff options
| author | Damien Miller <djm@mindrot.org> | 1999-11-11 20:44:05 +1100 |
|---|---|---|
| committer | Damien Miller <djm@mindrot.org> | 1999-11-11 20:44:05 +1100 |
| commit | 9fa19b633de1f0037772e0ce9f8f5baac3823695 (patch) | |
| tree | a67d49c5d58b7b4c7cca4853566138a5c29ca612 /sshd.c | |
| parent | 5ce662a9202240a2f5fa6a9334d58186bdaba50c (diff) | |
Merged sshd connection failure patch from Markus Friedl <markus@cvs.openbsd.org>
Diffstat (limited to 'sshd.c')
| -rw-r--r-- | sshd.c | 15 |
1 files changed, 8 insertions, 7 deletions
@@ -18,7 +18,7 @@ agent connections. */ #include "includes.h" -RCSID("$Id: sshd.c,v 1.13 1999/11/11 06:57:40 damien Exp $"); +RCSID("$Id: sshd.c,v 1.14 1999/11/11 09:44:05 damien Exp $"); #include "xmalloc.h" #include "rsa.h" @@ -881,7 +881,7 @@ main(int ac, char **av) void do_connection(int privileged_port) { - int i; + int i, len; BIGNUM *session_key_int; unsigned char session_key[SSH_SESSION_KEY_LENGTH]; unsigned char check_bytes[8]; @@ -1024,11 +1024,12 @@ void do_connection(int privileged_port) least significant 256 bits of the integer; the first byte of the key is in the highest bits. */ BN_mask_bits(session_key_int, sizeof(session_key) * 8); - if (BN_num_bytes(session_key_int) != sizeof(session_key)){ - fatal("do_connection: session_key_int %d != sizeof(session_key) %d", - BN_num_bytes(session_key_int), sizeof(session_key)); - } - BN_bn2bin(session_key_int, session_key); + len = BN_num_bytes(session_key_int); + if (len <= 0 || len > sizeof(session_key)) + fatal("do_connection: bad len: session_key_int %d > sizeof(session_key) %d", + len, sizeof(session_key)); + memset(session_key, 0, sizeof(session_key)); + BN_bn2bin(session_key_int, session_key + sizeof(session_key) - len); /* Xor the first 16 bytes of the session key with the session id. */ for (i = 0; i < 16; i++) |