CVS commit: src/lib/libradius

2018-02-07 Thread Christos Zoulas 
Module Name:src
Committed By:   christos
Date:   Wed Feb  7 22:51:31 UTC 2018

Modified Files:
src/lib/libradius: Makefile

Log Message:
Oops forgot one openssl version name change


To generate a diff of this commit:
cvs rdiff -u -r1.14 -r1.15 src/lib/libradius/Makefile

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Modified files:

Index: src/lib/libradius/Makefile
diff -u src/lib/libradius/Makefile:1.14 src/lib/libradius/Makefile:1.15
--- src/lib/libradius/Makefile:1.14	Mon Feb  5 06:58:13 2018
+++ src/lib/libradius/Makefile	Wed Feb  7 17:51:31 2018
@@ -1,4 +1,4 @@
-# $NetBSD: Makefile,v 1.14 2018/02/05 11:58:13 christos Exp $
+# $NetBSD: Makefile,v 1.15 2018/02/07 22:51:31 christos Exp $
 
 USE_FORT?= yes	# network protocol library
 
@@ -10,7 +10,7 @@ LINTFLAGS+= -Sw
 
 LIB=	radius
 CPPFLAGS+=	-I.
-CPPFLAGS+=	-DOPENSSL_VERSION_NUMBER=0x1010L
+CPPFLAGS+=	-DOPENSSL_API_COMPAT=0x1010L
 
 CPPFLAGS+=	-DWITH_SSL
 LIBDPLIBS+=crypto ${.CURDIR}/../../crypto/external/bsd/${EXTERNAL_OPENSSL_SUBDIR}/lib/libcrypto

CVS commit: src/lib/libradius

2018-02-05 Thread Christos Zoulas 
Module Name:src
Committed By:   christos
Date:   Mon Feb  5 11:58:13 UTC 2018

Modified Files:
src/lib/libradius: Makefile

Log Message:
pretend we have openssl-1.1


To generate a diff of this commit:
cvs rdiff -u -r1.13 -r1.14 src/lib/libradius/Makefile

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Modified files:

Index: src/lib/libradius/Makefile
diff -u src/lib/libradius/Makefile:1.13 src/lib/libradius/Makefile:1.14
--- src/lib/libradius/Makefile:1.13	Sat Feb  3 22:19:53 2018
+++ src/lib/libradius/Makefile	Mon Feb  5 06:58:13 2018
@@ -1,4 +1,4 @@
-# $NetBSD: Makefile,v 1.13 2018/02/04 03:19:53 christos Exp $
+# $NetBSD: Makefile,v 1.14 2018/02/05 11:58:13 christos Exp $
 
 USE_FORT?= yes	# network protocol library
 
@@ -10,6 +10,7 @@ LINTFLAGS+= -Sw
 
 LIB=	radius
 CPPFLAGS+=	-I.
+CPPFLAGS+=	-DOPENSSL_VERSION_NUMBER=0x1010L
 
 CPPFLAGS+=	-DWITH_SSL
 LIBDPLIBS+=crypto ${.CURDIR}/../../crypto/external/bsd/${EXTERNAL_OPENSSL_SUBDIR}/lib/libcrypto

CVS commit: src/lib/libradius

2018-02-04 Thread Christos Zoulas 
Module Name:src
Committed By:   christos
Date:   Mon Feb  5 00:43:07 UTC 2018

Modified Files:
src/lib/libradius: radlib.c

Log Message:
Adjust to openssl 1.1


To generate a diff of this commit:
cvs rdiff -u -r1.11 -r1.12 src/lib/libradius/radlib.c

Please note that diffs are not public domain; they are subject to the
copyright notices on the relevant files.

Modified files:

Index: src/lib/libradius/radlib.c
diff -u src/lib/libradius/radlib.c:1.11 src/lib/libradius/radlib.c:1.12
--- src/lib/libradius/radlib.c:1.11	Mon Jan 19 04:43:11 2009
+++ src/lib/libradius/radlib.c	Sun Feb  4 19:43:06 2018
@@ -1,4 +1,4 @@
-/* $NetBSD: radlib.c,v 1.11 2009/01/19 09:43:11 jmmv Exp $ */
+/* $NetBSD: radlib.c,v 1.12 2018/02/05 00:43:06 christos Exp $ */
 
 /*-
  * Copyright 1998 Juniper Networks, Inc.
@@ -30,7 +30,7 @@
 #ifdef __FreeBSD__
 __FBSDID("$FreeBSD: /repoman/r/ncvs/src/lib/libradius/radlib.c,v 1.12 2004/06/14 20:55:30 stefanf Exp $");
 #else
-__RCSID("$NetBSD: radlib.c,v 1.11 2009/01/19 09:43:11 jmmv Exp $");
+__RCSID("$NetBSD: radlib.c,v 1.12 2018/02/05 00:43:06 christos Exp $");
 #endif
 
 #include 
@@ -177,20 +177,19 @@ insert_message_authenticator(struct rad_
 	u_char md[EVP_MAX_MD_SIZE];
 	u_int md_len;
 	const struct rad_server *srvp;
-	HMAC_CTX ctx;
+	HMAC_CTX *ctx;
 	srvp = >servers[srv];
 
 	if (h->authentic_pos != 0) {
-		HMAC_CTX_init();
-		HMAC_Init(, srvp->secret,
-		(int)strlen(srvp->secret), EVP_md5());
-		HMAC_Update(, >request[POS_CODE], (size_t)(POS_AUTH - POS_CODE));
-		HMAC_Update(, >request[POS_AUTH], (size_t)LEN_AUTH);
-		HMAC_Update(, >request[POS_ATTRS],
+		ctx = HMAC_CTX_new();
+		HMAC_Init_ex(ctx, srvp->secret,
+		(int)strlen(srvp->secret), EVP_md5(), NULL);
+		HMAC_Update(ctx, >request[POS_CODE], (size_t)(POS_AUTH - POS_CODE));
+		HMAC_Update(ctx, >request[POS_AUTH], (size_t)LEN_AUTH);
+		HMAC_Update(ctx, >request[POS_ATTRS],
 		(size_t)(h->req_len - POS_ATTRS));
-		HMAC_Final(, md, _len);
-		HMAC_CTX_cleanup();
-		HMAC_cleanup();
+		HMAC_Final(ctx, md, _len);
+		HMAC_CTX_free(ctx);
 		(void)memcpy(>request[h->authentic_pos + 2], md,
 		(size_t)md_len);
 	}
@@ -210,7 +209,7 @@ is_valid_response(struct rad_handle *h, 
 	const struct rad_server *srvp;
 	size_t len;
 #ifdef WITH_SSL
-	HMAC_CTX hctx;
+	HMAC_CTX *hctx;
 	u_char resp[MSGSIZE], md[EVP_MAX_MD_SIZE];
 	size_t pos;
 	u_int md_len;
@@ -263,18 +262,17 @@ is_valid_response(struct rad_handle *h, 
 (void)memset([pos + 2], 0,
 (size_t)MD5_DIGEST_LENGTH);
 
-HMAC_CTX_init();
-HMAC_Init(, srvp->secret,
-(int)strlen(srvp->secret), EVP_md5());
-HMAC_Update(, >response[POS_CODE],
+hctx = HMAC_CTX_new();
+HMAC_Init_ex(hctx, srvp->secret,
+(int)strlen(srvp->secret), EVP_md5(), NULL);
+HMAC_Update(hctx, >response[POS_CODE],
 (size_t)(POS_AUTH - POS_CODE));
-HMAC_Update(, >request[POS_AUTH],
+HMAC_Update(hctx, >request[POS_AUTH],
 (size_t)LEN_AUTH);
-HMAC_Update(, [POS_ATTRS],
+HMAC_Update(hctx, [POS_ATTRS],
 (size_t)(h->resp_len - POS_ATTRS));
-HMAC_Final(, md, _len);
-HMAC_CTX_cleanup();
-HMAC_cleanup();
+HMAC_Final(hctx, md, _len);
+HMAC_CTX_free(hctx);
 if (memcmp(md, >response[pos + 2],
 (size_t)MD5_DIGEST_LENGTH) != 0)
 	return 0;