diff options
Diffstat (limited to 'ssh-keygen.c')
| -rw-r--r-- | ssh-keygen.c | 9 |
1 files changed, 8 insertions, 1 deletions
diff --git a/ssh-keygen.c b/ssh-keygen.c index 45248237c..1eb25bd94 100644 --- a/ssh-keygen.c +++ b/ssh-keygen.c | |||
| @@ -1,4 +1,4 @@ | |||
| 1 | /* $OpenBSD: ssh-keygen.c,v 1.188 2010/04/23 01:47:41 djm Exp $ */ | 1 | /* $OpenBSD: ssh-keygen.c,v 1.189 2010/04/23 22:48:31 djm Exp $ */ |
| 2 | /* | 2 | /* |
| 3 | * Author: Tatu Ylonen <ylo@cs.hut.fi> | 3 | * Author: Tatu Ylonen <ylo@cs.hut.fi> |
| 4 | * Copyright (c) 1994 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland | 4 | * Copyright (c) 1994 Tatu Ylonen <ylo@cs.hut.fi>, Espoo, Finland |
| @@ -1563,6 +1563,7 @@ main(int argc, char **argv) | |||
| 1563 | struct passwd *pw; | 1563 | struct passwd *pw; |
| 1564 | struct stat st; | 1564 | struct stat st; |
| 1565 | int opt, type, fd; | 1565 | int opt, type, fd; |
| 1566 | u_int maxbits; | ||
| 1566 | u_int32_t memory = 0, generator_wanted = 0, trials = 100; | 1567 | u_int32_t memory = 0, generator_wanted = 0, trials = 100; |
| 1567 | int do_gen_candidates = 0, do_screen_candidates = 0; | 1568 | int do_gen_candidates = 0, do_screen_candidates = 0; |
| 1568 | BIGNUM *start = NULL; | 1569 | BIGNUM *start = NULL; |
| @@ -1869,6 +1870,12 @@ main(int argc, char **argv) | |||
| 1869 | } | 1870 | } |
| 1870 | if (bits == 0) | 1871 | if (bits == 0) |
| 1871 | bits = (type == KEY_DSA) ? DEFAULT_BITS_DSA : DEFAULT_BITS; | 1872 | bits = (type == KEY_DSA) ? DEFAULT_BITS_DSA : DEFAULT_BITS; |
| 1873 | maxbits = (type == KEY_DSA) ? | ||
| 1874 | OPENSSL_DSA_MAX_MODULUS_BITS : OPENSSL_RSA_MAX_MODULUS_BITS; | ||
| 1875 | if (bits > maxbits) { | ||
| 1876 | fprintf(stderr, "key bits exceeds maximum %d\n", maxbits); | ||
| 1877 | exit(1); | ||
| 1878 | } | ||
| 1872 | if (type == KEY_DSA && bits != 1024) | 1879 | if (type == KEY_DSA && bits != 1024) |
| 1873 | fatal("DSA keys must be 1024 bits"); | 1880 | fatal("DSA keys must be 1024 bits"); |
| 1874 | if (!quiet) | 1881 | if (!quiet) |