diff options
author | Damien Miller <djm@mindrot.org> | 2008-06-29 22:47:04 +1000 |
---|---|---|
committer | Damien Miller <djm@mindrot.org> | 2008-06-29 22:47:04 +1000 |
commit | 2e9cf4906926fba123d415fdac8465b94bcd38b3 (patch) | |
tree | d0c86565f3f340c972ad1479251b9ee31add20ae /dh.h | |
parent | 9e720284fe63aa8e59983b880447ed4ae768387c (diff) |
- djm@cvs.openbsd.org 2008/06/26 09:19:40
[dh.c dh.h moduli.c]
when loading moduli from /etc/moduli in sshd(8), check that they
are of the expected "safe prime" structure and have had
appropriate primality tests performed;
feedback and ok dtucker@
Diffstat (limited to 'dh.h')
-rw-r--r-- | dh.h | 26 |
1 files changed, 25 insertions, 1 deletions
@@ -1,4 +1,4 @@ | |||
1 | /* $OpenBSD: dh.h,v 1.9 2006/03/25 22:22:43 djm Exp $ */ | 1 | /* $OpenBSD: dh.h,v 1.10 2008/06/26 09:19:40 djm Exp $ */ |
2 | 2 | ||
3 | /* | 3 | /* |
4 | * Copyright (c) 2000 Niels Provos. All rights reserved. | 4 | * Copyright (c) 2000 Niels Provos. All rights reserved. |
@@ -46,4 +46,28 @@ int dh_estimate(int); | |||
46 | #define DH_GRP_MIN 1024 | 46 | #define DH_GRP_MIN 1024 |
47 | #define DH_GRP_MAX 8192 | 47 | #define DH_GRP_MAX 8192 |
48 | 48 | ||
49 | /* | ||
50 | * Values for "type" field of moduli(5) | ||
51 | * Specifies the internal structure of the prime modulus. | ||
52 | */ | ||
53 | #define MODULI_TYPE_UNKNOWN (0) | ||
54 | #define MODULI_TYPE_UNSTRUCTURED (1) | ||
55 | #define MODULI_TYPE_SAFE (2) | ||
56 | #define MODULI_TYPE_SCHNORR (3) | ||
57 | #define MODULI_TYPE_SOPHIE_GERMAIN (4) | ||
58 | #define MODULI_TYPE_STRONG (5) | ||
59 | |||
60 | /* | ||
61 | * Values for "tests" field of moduli(5) | ||
62 | * Specifies the methods used in checking for primality. | ||
63 | * Usually, more than one test is used. | ||
64 | */ | ||
65 | #define MODULI_TESTS_UNTESTED (0x00) | ||
66 | #define MODULI_TESTS_COMPOSITE (0x01) | ||
67 | #define MODULI_TESTS_SIEVE (0x02) | ||
68 | #define MODULI_TESTS_MILLER_RABIN (0x04) | ||
69 | #define MODULI_TESTS_JACOBI (0x08) | ||
70 | #define MODULI_TESTS_ELLIPTIC (0x10) | ||
71 | |||
72 | |||
49 | #endif | 73 | #endif |