diff options
author | djm@openbsd.org <djm@openbsd.org> | 2015-07-03 03:49:45 +0000 |
---|---|---|
committer | Damien Miller <djm@mindrot.org> | 2015-07-15 15:36:02 +1000 |
commit | 933935ce8d093996c34d7efa4d59113163080680 (patch) | |
tree | 7c2df1bfff8ab967e52436d649a420fc20ba80c6 /sshd.c | |
parent | bdfd29f60b74f3e678297269dc6247a5699583c1 (diff) |
upstream commit
refuse to generate or accept RSA keys smaller than 1024
bits; feedback and ok dtucker@
Upstream-ID: 7ea3d31271366ba264f06e34a3539bf1ac30f0ba
Diffstat (limited to 'sshd.c')
-rw-r--r-- | sshd.c | 6 |
1 files changed, 3 insertions, 3 deletions
@@ -1,4 +1,4 @@ | |||
1 | /* $OpenBSD: sshd.c,v 1.452 2015/07/03 03:47:00 djm Exp $ */ | 1 | /* $OpenBSD: sshd.c,v 1.453 2015/07/03 03:49:45 djm Exp $ */ |
2 | /* | 2 | /* |
3 | * Author: Tatu Ylonen <ylo@cs.hut.fi> | 3 | * Author: Tatu Ylonen <ylo@cs.hut.fi> |
4 | * Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland | 4 | * Copyright (c) 1995 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland |
@@ -1874,8 +1874,8 @@ main(int ac, char **av) | |||
1874 | #ifdef WITH_SSH1 | 1874 | #ifdef WITH_SSH1 |
1875 | /* Check certain values for sanity. */ | 1875 | /* Check certain values for sanity. */ |
1876 | if (options.protocol & SSH_PROTO_1) { | 1876 | if (options.protocol & SSH_PROTO_1) { |
1877 | if (options.server_key_bits < 512 || | 1877 | if (options.server_key_bits < SSH_RSA_MINIMUM_MODULUS_SIZE || |
1878 | options.server_key_bits > 32768) { | 1878 | options.server_key_bits > OPENSSL_RSA_MAX_MODULUS_BITS) { |
1879 | fprintf(stderr, "Bad server key size.\n"); | 1879 | fprintf(stderr, "Bad server key size.\n"); |
1880 | exit(1); | 1880 | exit(1); |
1881 | } | 1881 | } |