Subject: Re: [libssh2] #279: libssh2 core dumps with FIPS openssl libraries

Re: [libssh2] #279: libssh2 core dumps with FIPS openssl libraries

From: libssh2 Trac <trac_at_libssh2.stuge.se>
Date: Thu, 21 Nov 2013 11:34:37 -0000

#279: libssh2 core dumps with FIPS openssl libraries
-----------------------------+--------------------------
  Reporter: Mark_McPherson | Owner: kdudka
      Type: defect | Status: closed
  Priority: high | Milestone: 1.4.3
Component: crypto | Version: 1.4.2
Resolution: fixed | Keywords: FIPS OpenSSL
Blocked By: | Blocks:
-----------------------------+--------------------------
Changes (by Mark_McPherson):

* status: accepted => closed
* resolution: => fixed

Comment:

In [changeset:"61df22c4601cd806dcc190f1252a8fbf01e67f7b/libssh2"]:
{{{
#!CommitTicketReference repository="libssh2"
revision="61df22c4601cd806dcc190f1252a8fbf01e67f7b"
openssl: initialise the digest context before calling EVP_DigestInit()

When using the OpenSSL libraries in FIPS mode, the function call
EVP_DigestInit() is actually #defined to FIPS_digestinit().
Unfortunately wheres EVP_DigestInit() initialises the context and then
calls EVP_DigestInit_ex(), this function assumes that the context has
been pre-initialised and crashes when it isn't.

Bug: https://trac.libssh2.org/ticket/279

Fixes #279
}}}

-- 
Ticket URL: <https://trac.libssh2.org/ticket/279#comment:2>
libssh2 <https://trac.libssh2.org/>
C library for writing portable SSH2 clients
_______________________________________________
libssh2-devel http://cool.haxx.se/cgi-bin/mailman/listinfo/libssh2-devel

Received on 2013-11-21

This message: [ Message body ]
Next message: Jiří Ševčík: "Patch - datacount"
Previous message: libssh2 Trac: "Re: [libssh2] #279: libssh2 core dumps with FIPS openssl libraries"
In reply to: libssh2 Trac: "[libssh2] #279: libssh2 core dumps with FIPS openssl libraries"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]