1 If you want to use the RSA stuff for crypto keys:
3 - Get RSAREF or RSAEURO.
4 - - Unpack it in the top-level source directory of the NTP distribution
5 in a directory named rsaref2 or rsaeuro1, respectively
6 (You should see directories like ports, rsaref2, scripts)
8 Make sure rsa.c has the security patch applied - a copy of it is at the
11 When you run configure, the Right Thing will happen.
13 Be advised that the RSA DES code is not quite as portable is one might
14 wish for. In particular, DES under NTP will only work between machines
15 of the same "endianness".
17 Note that the next release of NTP uses OpenSSL instead of RSAREF.
19 --- rsa.c.orig Fri Mar 25 14:01:48 1994
20 +++ rsaref2/source/rsa.c Mon Dec 13 13:10:28 1999
22 unsigned char byte, pkcsBlock[MAX_RSA_MODULUS_LEN];
23 unsigned int i, modulusLen;
25 + if (publicKey->bits > MAX_RSA_MODULUS_BITS)
28 modulusLen = (publicKey->bits + 7) / 8;
29 if (inputLen + 11 > modulusLen)
32 unsigned char pkcsBlock[MAX_RSA_MODULUS_LEN];
33 unsigned int i, modulusLen, pkcsBlockLen;
35 + if (publicKey->bits > MAX_RSA_MODULUS_BITS)
38 modulusLen = (publicKey->bits + 7) / 8;
39 if (inputLen > modulusLen)
43 unsigned char pkcsBlock[MAX_RSA_MODULUS_LEN];
44 unsigned int i, modulusLen;
46 + if (privateKey->bits > MAX_RSA_MODULUS_BITS)
49 modulusLen = (privateKey->bits + 7) / 8;
50 if (inputLen + 11 > modulusLen)
52 unsigned char pkcsBlock[MAX_RSA_MODULUS_LEN];
53 unsigned int i, modulusLen, pkcsBlockLen;
55 + if (privateKey->bits > MAX_RSA_MODULUS_BITS)
58 modulusLen = (privateKey->bits + 7) / 8;
59 if (inputLen > modulusLen)
62 --- rsa.c.orig Sat Sep 28 22:59:40 1996
63 +++ rsaeuro1/source/rsa.c Sat Jul 8 00:33:13 2000
64 @@ -51,6 +51,9 @@ R_RANDOM_STRUCT *randomStruct; /* rando
65 unsigned char byte, pkcsBlock[MAX_RSA_MODULUS_LEN];
66 unsigned int i, modulusLen;
68 + if (publicKey->bits > MAX_RSA_MODULUS_BITS)
71 modulusLen = (publicKey->bits + 7) / 8;
73 if(inputLen + 11 > modulusLen)
74 @@ -101,6 +104,9 @@ R_RSA_PUBLIC_KEY *publicKey; /* RSA p
75 unsigned char pkcsBlock[MAX_RSA_MODULUS_LEN];
76 unsigned int i, modulusLen, pkcsBlockLen;
78 + if (publicKey->bits > MAX_RSA_MODULUS_BITS)
81 modulusLen = (publicKey->bits + 7) / 8;
83 if(inputLen > modulusLen)
84 @@ -154,6 +160,9 @@ R_RSA_PRIVATE_KEY *privateKey; /* RSA p
85 unsigned char pkcsBlock[MAX_RSA_MODULUS_LEN];
86 unsigned int i, modulusLen;
88 + if (privateKey->bits > MAX_RSA_MODULUS_BITS)
91 modulusLen = (privateKey->bits + 7) / 8;
93 if(inputLen + 11 > modulusLen)
94 @@ -193,6 +202,9 @@ R_RSA_PRIVATE_KEY *privateKey; /* RSA p
95 unsigned char pkcsBlock[MAX_RSA_MODULUS_LEN];
96 unsigned int i, modulusLen, pkcsBlockLen;
98 + if (privateKey->bits > MAX_RSA_MODULUS_BITS)
101 modulusLen = (privateKey->bits + 7) / 8;
103 if(inputLen > modulusLen)