summaryrefslogtreecommitdiff
path: root/sshd.c
diff options
context:
space:
mode:
Diffstat (limited to 'sshd.c')
-rw-r--r--sshd.c6
1 files changed, 5 insertions, 1 deletions
diff --git a/sshd.c b/sshd.c
index 77a17e14a..686e7c26b 100644
--- a/sshd.c
+++ b/sshd.c
@@ -40,7 +40,7 @@
40 */ 40 */
41 41
42#include "includes.h" 42#include "includes.h"
43RCSID("$OpenBSD: sshd.c,v 1.155 2001/01/21 19:06:00 markus Exp $"); 43RCSID("$OpenBSD: sshd.c,v 1.156 2001/01/22 17:22:28 stevesk Exp $");
44 44
45#include <openssl/dh.h> 45#include <openssl/dh.h>
46#include <openssl/bn.h> 46#include <openssl/bn.h>
@@ -1531,6 +1531,7 @@ ssh_dh1_server(Kex *kex, Buffer *client_kexinit, Buffer *server_kexinit)
1531 buffer_free(server_kexinit); 1531 buffer_free(server_kexinit);
1532 xfree(client_kexinit); 1532 xfree(client_kexinit);
1533 xfree(server_kexinit); 1533 xfree(server_kexinit);
1534 BN_free(dh_client_pub);
1534#ifdef DEBUG_KEXDH 1535#ifdef DEBUG_KEXDH
1535 fprintf(stderr, "hash == "); 1536 fprintf(stderr, "hash == ");
1536 for (i = 0; i< 20; i++) 1537 for (i = 0; i< 20; i++)
@@ -1560,6 +1561,7 @@ ssh_dh1_server(Kex *kex, Buffer *client_kexinit, Buffer *server_kexinit)
1560 packet_write_wait(); 1561 packet_write_wait();
1561 1562
1562 kex_derive_keys(kex, hash, shared_secret); 1563 kex_derive_keys(kex, hash, shared_secret);
1564 BN_clear_free(shared_secret);
1563 packet_set_kex(kex); 1565 packet_set_kex(kex);
1564 1566
1565 /* have keys, free DH */ 1567 /* have keys, free DH */
@@ -1673,6 +1675,7 @@ ssh_dhgex_server(Kex *kex, Buffer *client_kexinit, Buffer *server_kexinit)
1673 buffer_free(server_kexinit); 1675 buffer_free(server_kexinit);
1674 xfree(client_kexinit); 1676 xfree(client_kexinit);
1675 xfree(server_kexinit); 1677 xfree(server_kexinit);
1678 BN_free(dh_client_pub);
1676#ifdef DEBUG_KEXDH 1679#ifdef DEBUG_KEXDH
1677 fprintf(stderr, "hash == "); 1680 fprintf(stderr, "hash == ");
1678 for (i = 0; i< 20; i++) 1681 for (i = 0; i< 20; i++)
@@ -1702,6 +1705,7 @@ ssh_dhgex_server(Kex *kex, Buffer *client_kexinit, Buffer *server_kexinit)
1702 packet_write_wait(); 1705 packet_write_wait();
1703 1706
1704 kex_derive_keys(kex, hash, shared_secret); 1707 kex_derive_keys(kex, hash, shared_secret);
1708 BN_clear_free(shared_secret);
1705 packet_set_kex(kex); 1709 packet_set_kex(kex);
1706 1710
1707 /* have keys, free DH */ 1711 /* have keys, free DH */
generated by cgit v1.2.3 (git 2.39.1) at 2024-09-29 08:29:53 +0000