RepoMirrors/openssh
1
0
Fork 0
mirror of git://anongit.mindrot.org/openssh.git synced 2025-02-17 22:36:53 +00:00
Code Issues Packages Projects Releases Wiki Activity

- dtucker@cvs.openbsd.org 2013/10/08 11:42:13

Browse Source 
[dh.c dh.h]
     Increase the size of the Diffie-Hellman groups requested for a each
     symmetric key size.  New values from NIST Special Publication 800-57 with
     the upper limit specified by RFC4419.  Pointed out by Peter Backes, ok
     djm@.
This commit is contained in:
Darren Tucker 2013-10-10 10:32:39 +11:00
parent e6e52f8c5d
commit df62d71e64
3 changed files with 18 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
ChangeLog
View File

@ -21,6 +21,12 @@
[sshconnect.c] [sshconnect.c]
bz#1211: make BindAddress work with UsePrivilegedPort=yes; patch from bz#1211: make BindAddress work with UsePrivilegedPort=yes; patch from
swp AT swp.pp.ru; ok dtucker@ swp AT swp.pp.ru; ok dtucker@
- dtucker@cvs.openbsd.org 2013/10/08 11:42:13
[dh.c dh.h]
Increase the size of the Diffie-Hellman groups requested for a each
symmetric key size. New values from NIST Special Publication 800-57 with
the upper limit specified by RFC4419. Pointed out by Peter Backes, ok
djm@.
20131009 20131009
- (djm) [openbsd-compat/arc4random.c openbsd-compat/chacha_private.h] Pull - (djm) [openbsd-compat/arc4random.c openbsd-compat/chacha_private.h] Pull

17
dh.c
View File

@ -1,4 +1,4 @@
/* $OpenBSD: dh.c,v 1.51 2013/07/02 12:31:43 markus Exp $ */ /* $OpenBSD: dh.c,v 1.52 2013/10/08 11:42:13 dtucker Exp $ */
/* /*
* Copyright (c) 2000 Niels Provos. All rights reserved. * Copyright (c) 2000 Niels Provos. All rights reserved.
* *
@ -352,17 +352,20 @@ dh_new_group14(void)
/* /*
* Estimates the group order for a Diffie-Hellman group that has an * Estimates the group order for a Diffie-Hellman group that has an
* attack complexity approximately the same as O(2**bits). Estimate * attack complexity approximately the same as O(2**bits).
* with: O(exp(1.9223 * (ln q)^(1/3) (ln ln q)^(2/3))) * Values from NIST Special Publication 800-57: Recommendation for Key
* Management Part 1 (rev 3) limited by the recommended maximum value
* from RFC4419 section 3.
*/ */
int int
dh_estimate(int bits) dh_estimate(int bits)
{ {
if (bits <= 112)
return 2048;
if (bits <= 128) if (bits <= 128)
return (1024); /* O(2**86) */ return 3072;
if (bits <= 192) if (bits <= 192)
return (2048); /* O(2**116) */ return 7680;
return (4096); /* O(2**156) */ return 8192;
} }

3
dh.h
View File

@ -1,4 +1,4 @@
/* $OpenBSD: dh.h,v 1.10 2008/06/26 09:19:40 djm Exp $ */ /* $OpenBSD: dh.h,v 1.11 2013/10/08 11:42:13 dtucker Exp $ */
/* /*
* Copyright (c) 2000 Niels Provos. All rights reserved. * Copyright (c) 2000 Niels Provos. All rights reserved.
@ -43,6 +43,7 @@ int dh_pub_is_valid(DH *, BIGNUM *);
int dh_estimate(int); int dh_estimate(int);
/* Min and max values from RFC4419. */
#define DH_GRP_MIN 1024 #define DH_GRP_MIN 1024
#define DH_GRP_MAX 8192 #define DH_GRP_MAX 8192