upstream commit refactor activation of rekeying This makes automatic rekeying internal to the packet code (previously the server and client loops needed to assist). In doing to it makes application of rekey limits more accurate by accounting for packets about to be sent as well as packets queued during rekeying events themselves. Based on a patch from dtucker@ which was in turn based on a patch Aleksander Adamowski in bz#2521; ok markus@ Upstream-ID: a441227fd64f9739850ca97b4cf794202860fcd8

commit: 19bcf2ea2d17413f2d9730dd2a19575ff86b9b6a [log] [tgz]
author: djm@openbsd.org <djm@openbsd.org> Mon Feb 08 10:57:07 2016 +0000
committer: Damien Miller <djm@mindrot.org> Mon Feb 08 21:58:32 2016 +1100
tree: a87286b290fcd540635890856fbcafef74341ec0
parent: 603ba41179e4b53951c7b90ee95b6ef3faa3f15d [diff] [blame]
diff --git a/kex.h b/kex.h
index 24d4aa1..1c58966 100644
--- a/kex.h
+++ b/kex.h

@@ -1,4 +1,4 @@
-/* $OpenBSD: kex.h,v 1.75 2016/01/14 16:17:39 markus Exp $ */
+/* $OpenBSD: kex.h,v 1.76 2016/02/08 10:57:07 djm Exp $ */
 
 /*
  * Copyright (c) 2000, 2001 Markus Friedl.  All rights reserved.
@@ -179,6 +179,7 @@
 int	 kex_derive_keys(struct ssh *, u_char *, u_int, const struct sshbuf *);
 int	 kex_derive_keys_bn(struct ssh *, u_char *, u_int, const BIGNUM *);
 int	 kex_send_newkeys(struct ssh *);
+int	 kex_start_rekex(struct ssh *);
 
 int	 kexdh_client(struct ssh *);
 int	 kexdh_server(struct ssh *);
commit	19bcf2ea2d17413f2d9730dd2a19575ff86b9b6a	[log] [tgz]
author	djm@openbsd.org <djm@openbsd.org>	Mon Feb 08 10:57:07 2016 +0000
committer	Damien Miller <djm@mindrot.org>	Mon Feb 08 21:58:32 2016 +1100
tree	a87286b290fcd540635890856fbcafef74341ec0
parent	603ba41179e4b53951c7b90ee95b6ef3faa3f15d [diff] [blame]