From a251f809a08dbfaee8b9ff5f310f9351527afe88 Mon Sep 17 00:00:00 2001 From: Darren Tucker Date: Sun, 22 Jun 2003 20:45:15 +1000 Subject: [PATCH] - (dtucker) OpenBSD CVS Sync - markus@cvs.openbsd.org 2003/06/18 11:28:11 [ssh-rsa.c] backout last change, since it violates pkcs#1 switch to share/misc/license.template --- ChangeLog | 9 ++++++--- ssh-rsa.c | 37 ++++++++++++++----------------------- 2 files changed, 20 insertions(+), 26 deletions(-) diff --git a/ChangeLog b/ChangeLog index 8b983b857..ba4f1f21d 100644 --- a/ChangeLog +++ b/ChangeLog @@ -1,8 +1,11 @@ 20030622 - - (dtucker) OpenBSD CVS Sync (regress/) + - (dtucker) OpenBSD CVS Sync - markus@cvs.openbsd.org 2003/06/21 09:14:05 - [reconfigure.sh] + [regress/reconfigure.sh] missing $SUDO; from dtucker@zip.com.au + [ssh-rsa.c] + backout last change, since it violates pkcs#1 + switch to share/misc/license.template - (dtucker) [regress/authorized_keys_root] Remove temp data file from CVS. - (dtucker) [openbsd-compat/setproctitle.c] Ensure SPT_TYPE is defined before testing its value. @@ -569,4 +572,4 @@ - Fix sshd BindAddress and -b options for systems using fake-getaddrinfo. Report from murple@murple.net, diagnosis from dtucker@zip.com.au -$Id: ChangeLog,v 1.2818 2003/06/22 08:32:10 dtucker Exp $ +$Id: ChangeLog,v 1.2819 2003/06/22 10:45:15 dtucker Exp $ diff --git a/ssh-rsa.c b/ssh-rsa.c index db8e5e359..53e5023f7 100644 --- a/ssh-rsa.c +++ b/ssh-rsa.c @@ -1,29 +1,20 @@ /* - * Copyright (c) 2000 Markus Friedl. All rights reserved. + * Copyright (c) 2000, 2003 Markus Friedl * - * Redistribution and use in source and binary forms, with or without - * modification, are permitted provided that the following conditions - * are met: - * 1. Redistributions of source code must retain the above copyright - * notice, this list of conditions and the following disclaimer. - * 2. Redistributions in binary form must reproduce the above copyright - * notice, this list of conditions and the following disclaimer in the - * documentation and/or other materials provided with the distribution. + * Permission to use, copy, modify, and distribute this software for any + * purpose with or without fee is hereby granted, provided that the above + * copyright notice and this permission notice appear in all copies. * - * THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR - * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES - * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. - * IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, - * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT - * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, - * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY - * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT - * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF - * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. + * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES + * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF + * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR + * ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES + * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN + * ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF + * OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. */ - #include "includes.h" -RCSID("$OpenBSD: ssh-rsa.c,v 1.29 2003/06/16 08:22:35 markus Exp $"); +RCSID("$OpenBSD: ssh-rsa.c,v 1.30 2003/06/18 11:28:11 markus Exp $"); #include #include @@ -247,8 +238,8 @@ openssh_RSA_verify(int type, u_char *hash, u_int hashlen, ERR_error_string(ERR_get_error(), NULL)); goto done; } - if (len < hlen + oidlen) { - error("bad decrypted len: %d < %d + %d", len, hlen, oidlen); + if (len != hlen + oidlen) { + error("bad decrypted len: %d != %d + %d", len, hlen, oidlen); goto done; } if (memcmp(decrypted, oid, oidlen) != 0) {