diff options
author | hsbt <hsbt@ruby-lang.org> | 2016-01-14 06:09:19 +0000 |
---|---|---|
committer | hsbt <hsbt@ruby-lang.org> | 2016-01-14 06:09:19 +0000 |
commit | cb367fde59549f64973da22eac739417590ead6a (patch) | |
tree | 410f1218256afe9d01fff35dd6649678cb5a2016 /lib/openssl | |
parent | 7a264896c597264eb4f11be5b745a3dae2ed960f (diff) | |
download | ruby-openssl-history-cb367fde59549f64973da22eac739417590ead6a.tar.gz |
* Remove 512-bit DH group. It's affected by LogJam Attack.
https://weakdh.org/
[fix GH-1196][Bug #11968][ruby-core:72766]
git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@53531 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
Diffstat (limited to 'lib/openssl')
-rw-r--r-- | lib/openssl/pkey.rb | 8 |
1 files changed, 0 insertions, 8 deletions
diff --git a/lib/openssl/pkey.rb b/lib/openssl/pkey.rb index 3f65ada..89563b6 100644 --- a/lib/openssl/pkey.rb +++ b/lib/openssl/pkey.rb @@ -4,13 +4,6 @@ module OpenSSL if defined?(OpenSSL::PKey::DH) class DH - DEFAULT_512 = new <<-_end_of_pem_ ------BEGIN DH PARAMETERS----- -MEYCQQD0zXHljRg/mJ9PYLACLv58Cd8VxBxxY7oEuCeURMiTqEhMym16rhhKgZG2 -zk2O9uUIBIxSj+NKMURHGaFKyIvLAgEC ------END DH PARAMETERS----- - _end_of_pem_ - DEFAULT_1024 = new <<-_end_of_pem_ -----BEGIN DH PARAMETERS----- MIGHAoGBAJ0lOVy0VIr/JebWn0zDwY2h+rqITFOpdNr6ugsgvkDXuucdcChhYExJ @@ -23,7 +16,6 @@ T4h7KZ/2zmjvV+eF8kBUHBJAojUlzxKj4QeO2x20FP9X5xmNUXeDAgEC DEFAULT_TMP_DH_CALLBACK = lambda { |ctx, is_export, keylen| warn "using default DH parameters." if $VERBOSE case keylen - when 512 then OpenSSL::PKey::DH::DEFAULT_512 when 1024 then OpenSSL::PKey::DH::DEFAULT_1024 else nil |