From 629436fac8d85a5c231a09fdc142b64f3d6b0de4 Mon Sep 17 00:00:00 2001
From: des <des@FreeBSD.org>
Date: Sat, 12 Mar 2016 23:53:20 +0000
Subject: MFH (r296633): upgrade to 7.2p2 (fixes xauth command injection bug)
 MFH (r296634): re-add aes-cbc to server-side default cipher list MFH
 (r296651, r296657): fix gcc build of pam_ssh

PR:		207679
Security:       CVE-2016-3115
---
 crypto/openssh/ssh.h | 10 ++++++++--
 1 file changed, 8 insertions(+), 2 deletions(-)

(limited to 'crypto/openssh/ssh.h')

diff --git a/crypto/openssh/ssh.h b/crypto/openssh/ssh.h
index 39c7e18..50467a7 100644
--- a/crypto/openssh/ssh.h
+++ b/crypto/openssh/ssh.h
@@ -1,4 +1,4 @@
-/* $OpenBSD: ssh.h,v 1.81 2015/08/04 05:23:06 djm Exp $ */
+/* $OpenBSD: ssh.h,v 1.83 2015/12/11 03:19:09 djm Exp $ */
 
 /*
  * Author: Tatu Ylonen <ylo@cs.hut.fi>
@@ -19,6 +19,12 @@
 #define SSH_DEFAULT_PORT	22
 
 /*
+ * Maximum number of certificate files that can be specified
+ * in configuration files or on the command line.
+ */
+#define SSH_MAX_CERTIFICATE_FILES	100
+
+/*
  * Maximum number of RSA authentication identity files that can be specified
  * in configuration files or on the command line.
  */
@@ -29,7 +35,7 @@
  * Current value permits 16kbit RSA and RSA1 keys and 8kbit DSA keys, with
  * some room for options and comments.
  */
-#define SSH_MAX_PUBKEY_BYTES		8192
+#define SSH_MAX_PUBKEY_BYTES		16384
 
 /*
  * Major protocol version.  Different version indicates major incompatibility
-- 
cgit v1.1