Gitiles
Code Review Sign In
gerrit-public.fairphone.software / platform / external / openssh / b282fec1aa05246ed3482270eb70fc3ec5f39a00^! / . / kexgexc.c
commitb282fec1aa05246ed3482270eb70fc3ec5f39a00[log] [tgz]
authordtucker@openbsd.org <dtucker@openbsd.org>Tue May 26 23:23:40 2015 +0000
committerDamien Miller <djm@mindrot.org>Wed May 27 13:47:19 2015 +1000
tree16ad568c149a219d84be1a954e52f093ebb762aa
parent3e91b4e8b0dc2b4b7e7d42cf6e8994a32e4cb55e [diff] [blame]
upstream commit

Cap DH-GEX group size at 4kbits for Cisco implementations.
 Some of them will choke when asked for preferred sizes >4k instead of
 returning the 4k group that they do have.  bz#2209, ok djm@

Upstream-ID: 54b863a19713446b7431f9d06ad0532b4fcfef8d

diff --git a/kexgexc.c b/kexgexc.c
index 3f20491..71ff133 100644
--- a/kexgexc.c
+++ b/kexgexc.c

@@ -1,4 +1,4 @@
-/* $OpenBSD: kexgexc.c,v 1.21 2015/04/13 02:04:08 djm Exp $ */
+/* $OpenBSD: kexgexc.c,v 1.22 2015/05/26 23:23:40 dtucker Exp $ */
 /*
  * Copyright (c) 2000 Niels Provos.  All rights reserved.
  * Copyright (c) 2001 Markus Friedl.  All rights reserved.
@@ -28,6 +28,7 @@
 
 #ifdef WITH_OPENSSL
 
+#include <sys/param.h>
 #include <sys/types.h>
 
 #include <openssl/dh.h>
@@ -65,6 +66,8 @@
 	kex->min = DH_GRP_MIN;
 	kex->max = DH_GRP_MAX;
 	kex->nbits = nbits;
+	if (datafellows & SSH_BUG_DHGEX_LARGE)
+		kex->nbits = MIN(kex->nbits, 4096);
 	/* New GEX request */
 	if ((r = sshpkt_start(ssh, SSH2_MSG_KEX_DH_GEX_REQUEST)) != 0 ||
 	    (r = sshpkt_put_u32(ssh, kex->min)) != 0 ||