View Ticket
2024-06-29
01:46 Closed ticket [0271e75530]: different dh param bit sizes in server key exchange plus 5 other changes artifact: 1404821a69 user: bohagan
2023-08-21
13:11 New ticket [0271e75530]. artifact: 022949b9d5 user: anonymous

Ticket Hash: 0271e755307824a64957e3ffef9bac9386069bbc
Title: different dh param bit sizes in server key exchange
Status: Closed Type: Code Defect
Severity: Critical Priority: Immediate
Subsystem: Resolution: Overcome_By_Events
Last Modified: 2024-06-29 01:46:50
Version Found In: tls1.7.21
User Comments:
anonymous added on 2023-08-21 13:11:53:

Although when server socket was opened, it had -certfile and -keyfile generated with 4096 bit size.

When server respond to client hello (tls1.2), tls lib always uses default dh key size 2048.

[Server Key exchange record is sending 256 bytes (DH key size of 2048)]


bohagan added on 2024-06-29 01:46:50:
This issue is obsolete with commit [d3d16ea77fa810d8] and the change to auto set the DH parameters.