2009-03-03 22:42:45 +01:00
|
|
|
--- openssh-5.2p1/ssh-add.c
|
|
|
|
|
+++ openssh-5.2p1/ssh-add.c
|
2008-04-09 22:21:23 +02:00
|
|
|
@@ -43,6 +43,7 @@
|
2007-01-07 17:26:05 +01:00
|
|
|
|
|
|
|
|
#include <openssl/evp.h>
|
2008-04-09 22:21:23 +02:00
|
|
|
#include "openbsd-compat/openssl-compat.h"
|
2007-01-07 17:26:05 +01:00
|
|
|
+#include <openssl/engine.h>
|
|
|
|
|
|
|
|
|
|
#include <fcntl.h>
|
|
|
|
|
#include <pwd.h>
|
2008-04-09 22:21:23 +02:00
|
|
|
@@ -344,6 +345,10 @@
|
2007-01-07 17:26:05 +01:00
|
|
|
|
|
|
|
|
SSLeay_add_all_algorithms();
|
|
|
|
|
|
|
|
|
|
+ /* Init available hardware crypto engines. */
|
|
|
|
|
+ ENGINE_load_builtin_engines();
|
|
|
|
|
+ ENGINE_register_all_complete();
|
|
|
|
|
+
|
|
|
|
|
/* At first, get a connection to the authentication agent. */
|
|
|
|
|
ac = ssh_get_authentication_connection();
|
|
|
|
|
if (ac == NULL) {
|
2009-03-03 22:42:45 +01:00
|
|
|
--- openssh-5.2p1/ssh-agent.c
|
|
|
|
|
+++ openssh-5.2p1/ssh-agent.c
|
2008-04-09 22:21:23 +02:00
|
|
|
@@ -52,6 +52,7 @@
|
2007-01-07 17:26:05 +01:00
|
|
|
#include <openssl/evp.h>
|
|
|
|
|
#include <openssl/md5.h>
|
2008-04-09 22:21:23 +02:00
|
|
|
#include "openbsd-compat/openssl-compat.h"
|
2007-01-07 17:26:05 +01:00
|
|
|
+#include <openssl/engine.h>
|
|
|
|
|
|
|
|
|
|
#include <errno.h>
|
|
|
|
|
#include <fcntl.h>
|
2008-07-25 04:29:14 +02:00
|
|
|
@@ -1076,6 +1077,10 @@
|
2007-01-07 17:26:05 +01:00
|
|
|
|
|
|
|
|
SSLeay_add_all_algorithms();
|
|
|
|
|
|
|
|
|
|
+ /* Init available hardware crypto engines. */
|
|
|
|
|
+ ENGINE_load_builtin_engines();
|
|
|
|
|
+ ENGINE_register_all_complete();
|
|
|
|
|
+
|
|
|
|
|
__progname = ssh_get_progname(av[0]);
|
|
|
|
|
init_rng();
|
|
|
|
|
seed_rng();
|
2009-03-03 22:42:45 +01:00
|
|
|
--- openssh-5.2p1/ssh-keygen.c
|
|
|
|
|
+++ openssh-5.2p1/ssh-keygen.c
|
2008-04-09 22:21:23 +02:00
|
|
|
@@ -22,6 +22,7 @@
|
2007-01-07 17:26:05 +01:00
|
|
|
#include <openssl/evp.h>
|
|
|
|
|
#include <openssl/pem.h>
|
2008-04-09 22:21:23 +02:00
|
|
|
#include "openbsd-compat/openssl-compat.h"
|
2007-01-07 17:26:05 +01:00
|
|
|
+#include <openssl/engine.h>
|
|
|
|
|
|
|
|
|
|
#include <errno.h>
|
|
|
|
|
#include <fcntl.h>
|
2008-07-25 04:29:14 +02:00
|
|
|
@@ -1099,6 +1100,11 @@
|
2007-03-15 01:56:27 +01:00
|
|
|
__progname = ssh_get_progname(argv[0]);
|
2007-01-07 17:26:05 +01:00
|
|
|
|
|
|
|
|
SSLeay_add_all_algorithms();
|
|
|
|
|
+
|
|
|
|
|
+ /* Init available hardware crypto engines. */
|
|
|
|
|
+ ENGINE_load_builtin_engines();
|
|
|
|
|
+ ENGINE_register_all_complete();
|
|
|
|
|
+
|
2007-03-15 01:56:27 +01:00
|
|
|
log_init(argv[0], SYSLOG_LEVEL_INFO, SYSLOG_FACILITY_USER, 1);
|
2007-01-07 17:26:05 +01:00
|
|
|
|
|
|
|
|
init_rng();
|
2009-03-03 22:42:45 +01:00
|
|
|
--- openssh-5.2p1/ssh-keysign.c
|
|
|
|
|
+++ openssh-5.2p1/ssh-keysign.c
|
2007-01-07 17:26:05 +01:00
|
|
|
@@ -38,6 +38,7 @@
|
|
|
|
|
#include <openssl/evp.h>
|
|
|
|
|
#include <openssl/rand.h>
|
|
|
|
|
#include <openssl/rsa.h>
|
|
|
|
|
+#include <openssl/engine.h>
|
|
|
|
|
|
|
|
|
|
#include "xmalloc.h"
|
|
|
|
|
#include "log.h"
|
|
|
|
|
@@ -195,6 +196,11 @@
|
|
|
|
|
fatal("could not open any host key");
|
|
|
|
|
|
|
|
|
|
SSLeay_add_all_algorithms();
|
|
|
|
|
+
|
|
|
|
|
+ /* Init available hardware crypto engines. */
|
|
|
|
|
+ ENGINE_load_builtin_engines();
|
|
|
|
|
+ ENGINE_register_all_complete();
|
|
|
|
|
+
|
|
|
|
|
for (i = 0; i < 256; i++)
|
|
|
|
|
rnd[i] = arc4random();
|
|
|
|
|
RAND_seed(rnd, sizeof(rnd));
|
2009-03-03 22:42:45 +01:00
|
|
|
--- openssh-5.2p1/ssh.c
|
|
|
|
|
+++ openssh-5.2p1/ssh.c
|
2008-04-09 22:21:23 +02:00
|
|
|
@@ -73,6 +73,7 @@
|
2007-01-07 17:26:05 +01:00
|
|
|
#include <openssl/err.h>
|
2008-04-09 22:21:23 +02:00
|
|
|
#include "openbsd-compat/openssl-compat.h"
|
2008-07-25 04:29:14 +02:00
|
|
|
#include "openbsd-compat/sys-queue.h"
|
2007-01-07 17:26:05 +01:00
|
|
|
+#include <openssl/engine.h>
|
|
|
|
|
|
|
|
|
|
#include "xmalloc.h"
|
|
|
|
|
#include "ssh.h"
|
2009-03-03 22:42:45 +01:00
|
|
|
@@ -550,6 +551,10 @@
|
2007-01-07 17:26:05 +01:00
|
|
|
SSLeay_add_all_algorithms();
|
|
|
|
|
ERR_load_crypto_strings();
|
|
|
|
|
|
|
|
|
|
+ /* Init available hardware crypto engines. */
|
|
|
|
|
+ ENGINE_load_builtin_engines();
|
|
|
|
|
+ ENGINE_register_all_complete();
|
|
|
|
|
+
|
|
|
|
|
/* Initialize the command to execute on remote host. */
|
|
|
|
|
buffer_init(&command);
|
|
|
|
|
|
2009-03-03 22:42:45 +01:00
|
|
|
--- openssh-5.2p1/sshd.c
|
|
|
|
|
+++ openssh-5.2p1/sshd.c
|
2008-07-25 04:29:14 +02:00
|
|
|
@@ -77,6 +77,7 @@
|
2007-01-07 17:26:05 +01:00
|
|
|
#include <openssl/md5.h>
|
|
|
|
|
#include <openssl/rand.h>
|
2008-04-09 22:21:23 +02:00
|
|
|
#include "openbsd-compat/openssl-compat.h"
|
2007-01-07 17:26:05 +01:00
|
|
|
+#include <openssl/engine.h>
|
2008-04-09 22:21:23 +02:00
|
|
|
|
2007-01-07 17:26:05 +01:00
|
|
|
#ifdef HAVE_SECUREWARE
|
|
|
|
|
#include <sys/security.h>
|
2009-03-03 22:42:45 +01:00
|
|
|
@@ -1415,6 +1416,10 @@
|
2007-01-07 17:26:05 +01:00
|
|
|
|
|
|
|
|
SSLeay_add_all_algorithms();
|
|
|
|
|
|
|
|
|
|
+ /* Init available hardware crypto engines. */
|
|
|
|
|
+ ENGINE_load_builtin_engines();
|
|
|
|
|
+ ENGINE_register_all_complete();
|
|
|
|
|
+
|
|
|
|
|
/*
|
|
|
|
|
* Force logging to stderr until we have loaded the private host
|
|
|
|
|
* key (unless started from inetd)
|
