upstream commit Cap DH-GEX group size at 4kbits for Cisco implementations. Some of them will choke when asked for preferred sizes >4k instead of returning the 4k group that they do have. bz#2209, ok djm@ Upstream-ID: 54b863a19713446b7431f9d06ad0532b4fcfef8d

commit: b282fec1aa05246ed3482270eb70fc3ec5f39a00 [log] [tgz]
author: dtucker@openbsd.org <dtucker@openbsd.org> Tue May 26 23:23:40 2015 +0000
committer: Damien Miller <djm@mindrot.org> Wed May 27 13:47:19 2015 +1000
tree: 16ad568c149a219d84be1a954e52f093ebb762aa
parent: 3e91b4e8b0dc2b4b7e7d42cf6e8994a32e4cb55e [diff] [blame]
diff --git a/compat.h b/compat.h
index 83507f0..2be290a 100644
--- a/compat.h
+++ b/compat.h

@@ -1,4 +1,4 @@
-/* $OpenBSD: compat.h,v 1.47 2015/04/10 05:16:50 dtucker Exp $ */
+/* $OpenBSD: compat.h,v 1.48 2015/05/26 23:23:40 dtucker Exp $ */
 
 /*
  * Copyright (c) 1999, 2000, 2001 Markus Friedl.  All rights reserved.
@@ -61,6 +61,7 @@
 #define SSH_BUG_DYNAMIC_RPORT	0x08000000
 #define SSH_BUG_CURVE25519PAD	0x10000000
 #define SSH_BUG_HOSTKEYS	0x20000000
+#define SSH_BUG_DHGEX_LARGE	0x40000000
 
 void     enable_compat13(void);
 void     enable_compat20(void);
commit	b282fec1aa05246ed3482270eb70fc3ec5f39a00	[log] [tgz]
author	dtucker@openbsd.org <dtucker@openbsd.org>	Tue May 26 23:23:40 2015 +0000
committer	Damien Miller <djm@mindrot.org>	Wed May 27 13:47:19 2015 +1000
tree	16ad568c149a219d84be1a954e52f093ebb762aa
parent	3e91b4e8b0dc2b4b7e7d42cf6e8994a32e4cb55e [diff] [blame]