- dtucker@cvs.openbsd.org 2003/12/09 13:52:55 [moduli.c] Prevent ssh-keygen -T from outputting moduli with a generator of 0, since they can't be used for Diffie-Hellman. Assistance and ok djm@

commit: 5cd9d443ef70e5c8bf8cc21bc6cc81298e18e863 [log] [tgz]
author: Darren Tucker <dtucker@zip.com.au> Wed Dec 10 00:54:38 2003 +1100
committer: Darren Tucker <dtucker@zip.com.au> Wed Dec 10 00:54:38 2003 +1100
tree: 54167b9fb2c0509c109986dbb75ac4fc72bd10f2
parent: a615314d3b784fbafff3ea72aaf7dc18cd23dbeb [diff] [blame]
diff --git a/moduli.c b/moduli.c
index 17c7281..371319d 100644
--- a/moduli.c
+++ b/moduli.c

@@ -1,4 +1,4 @@
-/* $OpenBSD: moduli.c,v 1.3 2003/12/07 06:34:18 djm Exp $ */
+/* $OpenBSD: moduli.c,v 1.4 2003/12/09 13:52:55 dtucker Exp $ */
 /*
  * Copyright 1994 Phil Karn <karn@qualcomm.com>
  * Copyright 1996-1998, 2003 William Allen Simpson <wsimpson@greendragon.com>
@@ -550,6 +550,15 @@
 			continue;
 		}
 
+		/*
+		 * Primes with no known generator are useless for DH, so
+		 * skip those.
+		 */
+		if (generator_known == 0) {
+			debug2("%10u: no known generator", count_in);
+			continue;
+		}
+
 		count_possible++;
 
 		/*
commit	5cd9d443ef70e5c8bf8cc21bc6cc81298e18e863	[log] [tgz]
author	Darren Tucker <dtucker@zip.com.au>	Wed Dec 10 00:54:38 2003 +1100
committer	Darren Tucker <dtucker@zip.com.au>	Wed Dec 10 00:54:38 2003 +1100
tree	54167b9fb2c0509c109986dbb75ac4fc72bd10f2
parent	a615314d3b784fbafff3ea72aaf7dc18cd23dbeb [diff] [blame]