* Remove 512-bit DH group. It's affected by LogJam Attack.

https://weakdh.org/ [fix GH-1196][Bug #11968][ruby-core:72766] git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@53531 b2dd03c8-39d4-4d8f-98ff-823fe69b080e
author: hsbt <hsbt@ruby-lang.org> 2016-01-14 06:09:19 +0000
committer: hsbt <hsbt@ruby-lang.org> 2016-01-14 06:09:19 +0000
commit: cb367fde59549f64973da22eac739417590ead6a (patch)
tree: 410f1218256afe9d01fff35dd6649678cb5a2016 /lib/openssl
parent: 7a264896c597264eb4f11be5b745a3dae2ed960f (diff)
download: ruby-openssl-history-cb367fde59549f64973da22eac739417590ead6a.tar.gz
1 files changed, 0 insertions, 8 deletions
diff --git a/lib/openssl/pkey.rb b/lib/openssl/pkey.rb
index 3f65ada..89563b6 100644
--- a/lib/openssl/pkey.rb
+++ b/lib/openssl/pkey.rb
@@ -4,13 +4,6 @@ module OpenSSL
     if defined?(OpenSSL::PKey::DH)
 
     class DH
-      DEFAULT_512 = new <<-_end_of_pem_
------BEGIN DH PARAMETERS-----
-MEYCQQD0zXHljRg/mJ9PYLACLv58Cd8VxBxxY7oEuCeURMiTqEhMym16rhhKgZG2
-zk2O9uUIBIxSj+NKMURHGaFKyIvLAgEC
------END DH PARAMETERS-----
-      _end_of_pem_
-
       DEFAULT_1024 = new <<-_end_of_pem_
 -----BEGIN DH PARAMETERS-----
 MIGHAoGBAJ0lOVy0VIr/JebWn0zDwY2h+rqITFOpdNr6ugsgvkDXuucdcChhYExJ
@@ -23,7 +16,6 @@ T4h7KZ/2zmjvV+eF8kBUHBJAojUlzxKj4QeO2x20FP9X5xmNUXeDAgEC
     DEFAULT_TMP_DH_CALLBACK = lambda { |ctx, is_export, keylen|
       warn "using default DH parameters." if $VERBOSE
       case keylen
-      when 512  then OpenSSL::PKey::DH::DEFAULT_512
       when 1024 then OpenSSL::PKey::DH::DEFAULT_1024
       else
         nil
author	hsbt <hsbt@ruby-lang.org>	2016-01-14 06:09:19 +0000
committer	hsbt <hsbt@ruby-lang.org>	2016-01-14 06:09:19 +0000
commit	cb367fde59549f64973da22eac739417590ead6a (patch)
tree	410f1218256afe9d01fff35dd6649678cb5a2016 /lib/openssl
parent	7a264896c597264eb4f11be5b745a3dae2ed960f (diff)
download	ruby-openssl-history-cb367fde59549f64973da22eac739417590ead6a.tar.gz