summaryrefslogtreecommitdiff
path: root/lib/dh-primes.c
diff options
context:
space:
mode:
authorDaiki Ueno <ueno@gnu.org>2020-10-06 11:54:21 +0200
committerDaiki Ueno <ueno@gnu.org>2020-10-07 06:17:00 +0200
commitf09b7627a63defb1c55e9965fb05e0bbddb90247 (patch)
tree6cbfb59a3f373e6a656573c6420bfb7f52c93ea5 /lib/dh-primes.c
parent6f034aa2e9f140626de2b9413715651dffe9e394 (diff)
downloadgnutls-tmp-dh-2048.tar.gz
fips: use larger prime for DH self-teststmp-dh-2048
According to FIPS140-2 IG 7.5, the minimum key size of FFC through 2030 is defined as 2048 bits. This updates the relevant self-test using ffdhe3072 defined in RFC 7919. Signed-off-by: Daiki Ueno <ueno@gnu.org>
Diffstat (limited to 'lib/dh-primes.c')
-rw-r--r--lib/dh-primes.c4
1 files changed, 0 insertions, 4 deletions
diff --git a/lib/dh-primes.c b/lib/dh-primes.c
index a440b5b98a..94b69e3450 100644
--- a/lib/dh-primes.c
+++ b/lib/dh-primes.c
@@ -23,8 +23,6 @@
#include "gnutls_int.h"
#include <gnutls/gnutls.h>
-#if defined(ENABLE_DHE) || defined(ENABLE_ANON)
-
#include "dh.h"
static const unsigned char ffdhe_generator = 0x02;
@@ -1934,5 +1932,3 @@ _gnutls_dh_prime_match_fips_approved(const uint8_t *prime,
return 0;
}
-
-#endif