upstream: use KEM API for vanilla DH KEX

from markus@ ok djm@ OpenBSD-Commit-ID: af56466426b08a8be275412ae2743319e3d277c9
author: djm@openbsd.org <djm@openbsd.org> 2019-01-21 10:28:01 +0000
committer: Damien Miller <djm@mindrot.org> 2019-01-21 22:08:47 +1100
commit: 9c9c97e14fe190931f341876ad98213e1e1dc19f (patch)
tree: 079c12ccb4e1538928872d4bc5623727119291e2 /ssh_api.c
parent: 2f6a9ddbbf6ca8623c53c323ff17fb6d68d66970 (diff)
1 files changed, 11 insertions, 11 deletions
diff --git a/ssh_api.c b/ssh_api.c
index fe9fbf5a7..ac614e599 100644
--- a/ssh_api.c
+++ b/ssh_api.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: ssh_api.c,v 1.12 2019/01/21 10:24:09 djm Exp $ */
+/* $OpenBSD: ssh_api.c,v 1.13 2019/01/21 10:28:02 djm Exp $ */
 /*
 * Copyright (c) 2012 Markus Friedl.  All rights reserved.
 *
@@ -99,11 +99,11 @@ ssh_init(struct ssh **sshp, int is_server, struct kex_params *kex_params)
        ssh->kex->server = is_server;
        if (is_server) {
 #ifdef WITH_OPENSSL
-                ssh->kex->kex[KEX_DH_GRP1_SHA1] = kexdh_server;
+                ssh->kex->kex[KEX_DH_GRP1_SHA1] = kex_kem_server;
-                ssh->kex->kex[KEX_DH_GRP14_SHA1] = kexdh_server;
+                ssh->kex->kex[KEX_DH_GRP14_SHA1] = kex_kem_server;
-                ssh->kex->kex[KEX_DH_GRP14_SHA256] = kexdh_server;
+                ssh->kex->kex[KEX_DH_GRP14_SHA256] = kex_kem_server;
-                ssh->kex->kex[KEX_DH_GRP16_SHA512] = kexdh_server;
+                ssh->kex->kex[KEX_DH_GRP16_SHA512] = kex_kem_server;
-                ssh->kex->kex[KEX_DH_GRP18_SHA512] = kexdh_server;
+                ssh->kex->kex[KEX_DH_GRP18_SHA512] = kex_kem_server;
                ssh->kex->kex[KEX_DH_GEX_SHA1] = kexgex_server;
                ssh->kex->kex[KEX_DH_GEX_SHA256] = kexgex_server;
 # ifdef OPENSSL_HAS_ECC
@@ -117,11 +117,11 @@ ssh_init(struct ssh **sshp, int is_server, struct kex_params *kex_params)
                ssh->kex->sign=&_ssh_host_key_sign;
        } else {
 #ifdef WITH_OPENSSL
-                ssh->kex->kex[KEX_DH_GRP1_SHA1] = kexdh_client;
+                ssh->kex->kex[KEX_DH_GRP1_SHA1] = kex_kem_client;
-                ssh->kex->kex[KEX_DH_GRP14_SHA1] = kexdh_client;
+                ssh->kex->kex[KEX_DH_GRP14_SHA1] = kex_kem_client;
-                ssh->kex->kex[KEX_DH_GRP14_SHA256] = kexdh_client;
+                ssh->kex->kex[KEX_DH_GRP14_SHA256] = kex_kem_client;
-                ssh->kex->kex[KEX_DH_GRP16_SHA512] = kexdh_client;
+                ssh->kex->kex[KEX_DH_GRP16_SHA512] = kex_kem_client;
-                ssh->kex->kex[KEX_DH_GRP18_SHA512] = kexdh_client;
+                ssh->kex->kex[KEX_DH_GRP18_SHA512] = kex_kem_client;
                ssh->kex->kex[KEX_DH_GEX_SHA1] = kexgex_client;
                ssh->kex->kex[KEX_DH_GEX_SHA256] = kexgex_client;
 # ifdef OPENSSL_HAS_ECC
author	djm@openbsd.org <djm@openbsd.org>	2019-01-21 10:28:01 +0000
committer	Damien Miller <djm@mindrot.org>	2019-01-21 22:08:47 +1100
commit	9c9c97e14fe190931f341876ad98213e1e1dc19f (patch)
tree	079c12ccb4e1538928872d4bc5623727119291e2 /ssh_api.c
parent	2f6a9ddbbf6ca8623c53c323ff17fb6d68d66970 (diff)

diff --git a/ssh_api.c b/ssh_api.c index fe9fbf5a7..ac614e599 100644 --- a/ssh_api.c +++ b/ssh_api.c
@@ -1,4 +1,4 @@
1	/* $OpenBSD: ssh_api.c,v 1.12 2019/01/21 10:24:09 djm Exp $ */	1	/* $OpenBSD: ssh_api.c,v 1.13 2019/01/21 10:28:02 djm Exp $ */
2	/*	2	/*
3	* Copyright (c) 2012 Markus Friedl. All rights reserved.	3	* Copyright (c) 2012 Markus Friedl. All rights reserved.
4	*	4	*
@@ -99,11 +99,11 @@ ssh_init(struct ssh *sshp, int is_server, struct kex_params kex_params)
99	ssh->kex->server = is_server;	99	ssh->kex->server = is_server;
100	if (is_server) {	100	if (is_server) {
101	#ifdef WITH_OPENSSL	101	#ifdef WITH_OPENSSL
102	ssh->kex->kex[KEX_DH_GRP1_SHA1] = kexdh_server;	102	ssh->kex->kex[KEX_DH_GRP1_SHA1] = kex_kem_server;
103	ssh->kex->kex[KEX_DH_GRP14_SHA1] = kexdh_server;	103	ssh->kex->kex[KEX_DH_GRP14_SHA1] = kex_kem_server;
104	ssh->kex->kex[KEX_DH_GRP14_SHA256] = kexdh_server;	104	ssh->kex->kex[KEX_DH_GRP14_SHA256] = kex_kem_server;
105	ssh->kex->kex[KEX_DH_GRP16_SHA512] = kexdh_server;	105	ssh->kex->kex[KEX_DH_GRP16_SHA512] = kex_kem_server;
106	ssh->kex->kex[KEX_DH_GRP18_SHA512] = kexdh_server;	106	ssh->kex->kex[KEX_DH_GRP18_SHA512] = kex_kem_server;
107	ssh->kex->kex[KEX_DH_GEX_SHA1] = kexgex_server;	107	ssh->kex->kex[KEX_DH_GEX_SHA1] = kexgex_server;
108	ssh->kex->kex[KEX_DH_GEX_SHA256] = kexgex_server;	108	ssh->kex->kex[KEX_DH_GEX_SHA256] = kexgex_server;
109	# ifdef OPENSSL_HAS_ECC	109	# ifdef OPENSSL_HAS_ECC
@@ -117,11 +117,11 @@ ssh_init(struct ssh *sshp, int is_server, struct kex_params kex_params)
117	ssh->kex->sign=&_ssh_host_key_sign;	117	ssh->kex->sign=&_ssh_host_key_sign;
118	} else {	118	} else {
119	#ifdef WITH_OPENSSL	119	#ifdef WITH_OPENSSL
120	ssh->kex->kex[KEX_DH_GRP1_SHA1] = kexdh_client;	120	ssh->kex->kex[KEX_DH_GRP1_SHA1] = kex_kem_client;
121	ssh->kex->kex[KEX_DH_GRP14_SHA1] = kexdh_client;	121	ssh->kex->kex[KEX_DH_GRP14_SHA1] = kex_kem_client;
122	ssh->kex->kex[KEX_DH_GRP14_SHA256] = kexdh_client;	122	ssh->kex->kex[KEX_DH_GRP14_SHA256] = kex_kem_client;
123	ssh->kex->kex[KEX_DH_GRP16_SHA512] = kexdh_client;	123	ssh->kex->kex[KEX_DH_GRP16_SHA512] = kex_kem_client;
124	ssh->kex->kex[KEX_DH_GRP18_SHA512] = kexdh_client;	124	ssh->kex->kex[KEX_DH_GRP18_SHA512] = kex_kem_client;
125	ssh->kex->kex[KEX_DH_GEX_SHA1] = kexgex_client;	125	ssh->kex->kex[KEX_DH_GEX_SHA1] = kexgex_client;
126	ssh->kex->kex[KEX_DH_GEX_SHA256] = kexgex_client;	126	ssh->kex->kex[KEX_DH_GEX_SHA256] = kexgex_client;
127	# ifdef OPENSSL_HAS_ECC	127	# ifdef OPENSSL_HAS_ECC