The original des_ prefixed functions were renamed to use a DES_prefix in OpenSSL 0.9.7. Attached patch switches over to the new format.
This allows ppp to be built against LibreSSL.
DES_set_key() & DES_ecb_encrypt() need to be passed the address of the key_schedule pointer.
Bug 205004
Details
Details
- Reviewers
bcr - Group Reviewers
Src Committers
Diff Detail
Diff Detail
- Repository
- rS FreeBSD src repository - subversion
- Lint
Lint Skipped - Unit
Tests Skipped
Event Timeline
Comment Actions
Apart from the one minor issue I do not see problems (which does not mean there aren't any).
It looks like testing requires some setup with different software, since ppp(8) only implements the client side for some of the MSCHAP protocols. This should not need modems though, since ppp(8) seems to support the protocols for VPNs.
usr.sbin/ppp/chap_ms.c | ||
---|---|---|
116 | The man page suggests using DES_set_key_checked() or DES_set_key_unchecked() since DES_set_key() behaves as one of those depending on a global variable. It seems best to use DES_set_key_unchecked() since these keys are definitely not random and weak keys cannot be avoided other than by picking a different password. |