diff options
author | djm@openbsd.org <djm@openbsd.org> | 2015-10-16 22:32:22 +0000 |
---|---|---|
committer | Damien Miller <djm@mindrot.org> | 2015-10-17 09:32:47 +1100 |
commit | b56deb847f4a0115a8bf488bf6ee8524658162fd (patch) | |
tree | 67ffc1513a0ad44627aa42d2b72356e61e494457 /dh.h | |
parent | 5ee0063f024bf5b3f3ffb275b8cd20055d62b4b9 (diff) |
upstream commit
increase the minimum modulus that we will send or accept in
diffie-hellman-group-exchange to 2048 bits; ok markus@
Upstream-ID: 06dce7a24c17b999a0f5fadfe95de1ed6a1a9b6a
Diffstat (limited to 'dh.h')
-rw-r--r-- | dh.h | 9 |
1 files changed, 6 insertions, 3 deletions
@@ -1,4 +1,4 @@ | |||
1 | /* $OpenBSD: dh.h,v 1.13 2015/05/27 23:39:18 dtucker Exp $ */ | 1 | /* $OpenBSD: dh.h,v 1.14 2015/10/16 22:32:22 djm Exp $ */ |
2 | 2 | ||
3 | /* | 3 | /* |
4 | * Copyright (c) 2000 Niels Provos. All rights reserved. | 4 | * Copyright (c) 2000 Niels Provos. All rights reserved. |
@@ -44,8 +44,11 @@ int dh_pub_is_valid(DH *, BIGNUM *); | |||
44 | 44 | ||
45 | u_int dh_estimate(int); | 45 | u_int dh_estimate(int); |
46 | 46 | ||
47 | /* Min and max values from RFC4419. */ | 47 | /* |
48 | #define DH_GRP_MIN 1024 | 48 | * Max value from RFC4419. |
49 | * Miniumum increased in light of DH precomputation attacks. | ||
50 | */ | ||
51 | #define DH_GRP_MIN 2048 | ||
49 | #define DH_GRP_MAX 8192 | 52 | #define DH_GRP_MAX 8192 |
50 | 53 | ||
51 | /* | 54 | /* |