- stevesk@cvs.openbsd.org 2002/08/27 17:13:56

     [ssh-rsa.c]
     RSA_public_decrypt() returns -1 on error so len must be signed;
     ok markus@

2 files changed, 8 insertions, 3 deletions

diff --git a/ChangeLog b/ChangeLog
index ce409160f..9a6eb9877 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -31,6 +31,10 @@
      [session.c]
      send signal name (not signal number) in "exit-signal" message; noticed
      by galb@vandyke.com
+   - stevesk@cvs.openbsd.org 2002/08/27 17:13:56
+     [ssh-rsa.c]
+     RSA_public_decrypt() returns -1 on error so len must be signed; 
+     ok markus@
 
 20020820
  - OpenBSD CVS Sync
@@ -1572,4 +1576,4 @@
  - (stevesk) entropy.c: typo in debug message
  - (djm) ssh-keygen -i needs seeded RNG; report from markus@
 
-$Id: ChangeLog,v 1.2435 2002/09/04 06:39:02 djm Exp $
+$Id: ChangeLog,v 1.2436 2002/09/04 06:39:48 djm Exp $
diff --git a/ssh-rsa.c b/ssh-rsa.c
index 44287fa26..d7b2918f9 100644
--- a/ssh-rsa.c
+++ b/ssh-rsa.c
@@ -23,7 +23,7 @@
  */
 
 #include "includes.h"
-RCSID("$OpenBSD: ssh-rsa.c,v 1.25 2002/08/02 22:20:30 markus Exp $");
+RCSID("$OpenBSD: ssh-rsa.c,v 1.26 2002/08/27 17:13:56 stevesk Exp $");
 
 #include <openssl/evp.h>
 #include <openssl/err.h>
@@ -211,7 +211,8 @@ static int
 openssh_RSA_verify(int type, u_char *hash, u_int hashlen,
     u_char *sigbuf, u_int siglen, RSA *rsa)
 {
-        u_int ret, rsasize, len, oidlen = 0, hlen = 0;
+        u_int ret, rsasize, oidlen = 0, hlen = 0;
+        int len;
         const u_char *oid = NULL;
         u_char *decrypted = NULL;