Validate our DH parameters to prevent socat-type fails.
http://www.openwall.com/lists/oss-security/2016/02/01/4
Was stupid and is easily avoided. While we use hard coded known good primes taken from sensible locations, the code should validate the parameters used as a defense in depth measure.