summaryrefslogtreecommitdiffstats
path: root/kex.c
diff options
context:
space:
mode:
authorDamien Miller <djm@mindrot.org>2014-01-26 09:38:03 +1100
committerDamien Miller <djm@mindrot.org>2014-01-26 09:38:03 +1100
commita92ac7410475fbb00383c7402aa954dc0a75ae19 (patch)
treecc9eb205234444ad3b843838e1786c7dee64eb62 /kex.c
parent76eea4ab4e658670ca6e76dd1e6d17f262208b57 (diff)
- markus@cvs.openbsd.org 2014/01/25 20:35:37
[kex.c] dh_need needs to be set to max(seclen, blocksize, ivlen, mac_len) ok dtucker@, noted by mancha
Diffstat (limited to 'kex.c')
-rw-r--r--kex.c20
1 files changed, 9 insertions, 11 deletions
diff --git a/kex.c b/kex.c
index 39d16f8e..616484b8 100644
--- a/kex.c
+++ b/kex.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: kex.c,v 1.96 2014/01/25 10:12:50 dtucker Exp $ */
+/* $OpenBSD: kex.c,v 1.97 2014/01/25 20:35:37 markus Exp $ */
/*
* Copyright (c) 2000, 2001 Markus Friedl. All rights reserved.
*
@@ -509,16 +509,14 @@ kex_choose_conf(Kex *kex)
need = dh_need = 0;
for (mode = 0; mode < MODE_MAX; mode++) {
newkeys = kex->newkeys[mode];
- if (need < newkeys->enc.key_len)
- need = newkeys->enc.key_len;
- if (need < newkeys->enc.block_size)
- need = newkeys->enc.block_size;
- if (need < newkeys->enc.iv_len)
- need = newkeys->enc.iv_len;
- if (need < newkeys->mac.key_len)
- need = newkeys->mac.key_len;
- if (dh_need < cipher_seclen(newkeys->enc.cipher))
- dh_need = cipher_seclen(newkeys->enc.cipher);
+ need = MAX(need, newkeys->enc.key_len);
+ need = MAX(need, newkeys->enc.block_size);
+ need = MAX(need, newkeys->enc.iv_len);
+ need = MAX(need, newkeys->mac.key_len);
+ dh_need = MAX(dh_need, cipher_seclen(newkeys->enc.cipher));
+ dh_need = MAX(dh_need, newkeys->enc.block_size);
+ dh_need = MAX(dh_need, newkeys->enc.iv_len);
+ dh_need = MAX(dh_need, newkeys->mac.key_len);
}
/* XXX need runden? */
kex->we_need = need;
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-24 12:32:30 +0000