diff options
| author | Darren Tucker <dtucker@zip.com.au> | 2009-11-07 16:03:14 +1100 |
|---|---|---|
| committer | Darren Tucker <dtucker@zip.com.au> | 2009-11-07 16:03:14 +1100 |
| commit | df6578bb4df17210f792c3bc98a72bed473e7e11 (patch) | |
| tree | 7fb3b57ea303273dbd6adab903e566de67fab54e /authfile.c | |
| parent | e89ed1cfcae65705b48d3741873d8ab1f76a6cf7 (diff) | |
- (dtucker) [authfile.c] Fall back to 3DES for the encryption of private
keys when built with OpenSSL versions that don't do AES.
Diffstat (limited to 'authfile.c')
| -rw-r--r-- | authfile.c | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/authfile.c b/authfile.c index fc12c00c7..3fbe11b0e 100644 --- a/authfile.c +++ b/authfile.c | |||
| @@ -187,7 +187,11 @@ key_save_private_pem(Key *key, const char *filename, const char *_passphrase, | |||
| 187 | int success = 0; | 187 | int success = 0; |
| 188 | int len = strlen(_passphrase); | 188 | int len = strlen(_passphrase); |
| 189 | u_char *passphrase = (len > 0) ? (u_char *)_passphrase : NULL; | 189 | u_char *passphrase = (len > 0) ? (u_char *)_passphrase : NULL; |
| 190 | #if (OPENSSL_VERSION_NUMBER < 0x00907000L) | ||
| 191 | const EVP_CIPHER *cipher = (len > 0) ? EVP_des_ede3_cbc() : NULL; | ||
| 192 | #else | ||
| 190 | const EVP_CIPHER *cipher = (len > 0) ? EVP_aes_128_cbc() : NULL; | 193 | const EVP_CIPHER *cipher = (len > 0) ? EVP_aes_128_cbc() : NULL; |
| 194 | #endif | ||
| 191 | 195 | ||
| 192 | if (len > 0 && len <= 4) { | 196 | if (len > 0 && len <= 4) { |
| 193 | error("passphrase too short: have %d bytes, need > 4", len); | 197 | error("passphrase too short: have %d bytes, need > 4", len); |