projects / oweals / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: ff4de7d) | patch
client: reject handshakes with DH parameters < 768 bits.
authorEmilia Kasper <emilia@openssl.org>
Tue, 19 May 2015 10:05:22 +0000 (12:05 +0200)
committerEmilia Kasper <emilia@openssl.org>
Wed, 20 May 2015 13:01:36 +0000 (15:01 +0200)
commit63830384e90d9b36d2793d4891501ec024827433
treeda5b03f61bba408107d21065c4cbf78b81187e14tree | snapshot
parentff4de7dde90d15b366abe4664b904f22539969c9commit | diff
client: reject handshakes with DH parameters < 768 bits.

Since the client has no way of communicating her supported parameter
range to the server, connections to servers that choose weak DH will
simply fail.

Reviewed-by: Kurt Roeckx <kurt@openssl.org>
CHANGES diff | blob | history
ssl/s3_clnt.c diff | blob | history
ssl/ssl.h diff | blob | history
ssl/ssl_err.c diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.