Dear sirs: I know that this does not follow the normal bug reporting procedures, but I don't have the necessary forms/reports at my fingertips. I wanted to let you know, that I've had problems using OpenSSH (v3.0.1p1 and v3.0.2p1) with OpenSSL (v0.9.6b). Mainly, when I try generating DSA keys with ssh-keygen and running the ssh client, I get coredumps with Segmentation Violations and Bus Error signals. In both cases, the code died in OpenSSL code - the DSA and DH modules.
I'm using gcc v3.0.2 and GNU make to build the stuff on older SPARC (sun4m) hardware, under Solaris 6 and 8. I took a look at the code and fixed it on my end by doing several things in mem.c, dsa_gen.c, dsa_lib.c, dh_gen.c, dh_key.c, dh_lib.c. 1) Initialized all automatic variables, including structures and arrays. 2) Added null pointer tests. 3) Increased automatic buffer allocations by 1. --Lyndon Van Wagner <<VanWagner, Lyndon.vcf>>
VanWagner, Lyndon.vcf
Description: Binary data
