diff options
Diffstat (limited to 'authfile.c')
-rw-r--r-- | authfile.c | 13 |
1 files changed, 12 insertions, 1 deletions
diff --git a/authfile.c b/authfile.c index 24ae6abd3..90618efde 100644 --- a/authfile.c +++ b/authfile.c | |||
@@ -36,7 +36,7 @@ | |||
36 | */ | 36 | */ |
37 | 37 | ||
38 | #include "includes.h" | 38 | #include "includes.h" |
39 | RCSID("$OpenBSD: authfile.c,v 1.51 2002/11/15 10:03:09 fgsch Exp $"); | 39 | RCSID("$OpenBSD: authfile.c,v 1.52 2003/03/13 11:42:18 markus Exp $"); |
40 | 40 | ||
41 | #include <openssl/err.h> | 41 | #include <openssl/err.h> |
42 | #include <openssl/evp.h> | 42 | #include <openssl/evp.h> |
@@ -421,6 +421,12 @@ key_load_private_rsa1(int fd, const char *filename, const char *passphrase, | |||
421 | rsa_generate_additional_parameters(prv->rsa); | 421 | rsa_generate_additional_parameters(prv->rsa); |
422 | 422 | ||
423 | buffer_free(&decrypted); | 423 | buffer_free(&decrypted); |
424 | |||
425 | /* enable blinding */ | ||
426 | if (RSA_blinding_on(prv->rsa, NULL) != 1) { | ||
427 | error("key_load_private_rsa1: RSA_blinding_on failed"); | ||
428 | goto fail; | ||
429 | } | ||
424 | close(fd); | 430 | close(fd); |
425 | return prv; | 431 | return prv; |
426 | 432 | ||
@@ -460,6 +466,11 @@ key_load_private_pem(int fd, int type, const char *passphrase, | |||
460 | #ifdef DEBUG_PK | 466 | #ifdef DEBUG_PK |
461 | RSA_print_fp(stderr, prv->rsa, 8); | 467 | RSA_print_fp(stderr, prv->rsa, 8); |
462 | #endif | 468 | #endif |
469 | if (RSA_blinding_on(prv->rsa, NULL) != 1) { | ||
470 | error("key_load_private_pem: RSA_blinding_on failed"); | ||
471 | key_free(prv); | ||
472 | prv = NULL; | ||
473 | } | ||
463 | } else if (pk->type == EVP_PKEY_DSA && | 474 | } else if (pk->type == EVP_PKEY_DSA && |
464 | (type == KEY_UNSPEC||type==KEY_DSA)) { | 475 | (type == KEY_UNSPEC||type==KEY_DSA)) { |
465 | prv = key_new(KEY_UNSPEC); | 476 | prv = key_new(KEY_UNSPEC); |