diff options
author | Daiki Ueno <ueno@gnu.org> | 2020-10-06 11:54:21 +0200 |
---|---|---|
committer | Daiki Ueno <ueno@gnu.org> | 2020-10-07 06:17:00 +0200 |
commit | f09b7627a63defb1c55e9965fb05e0bbddb90247 (patch) | |
tree | 6cbfb59a3f373e6a656573c6420bfb7f52c93ea5 /lib/dh-primes.c | |
parent | 6f034aa2e9f140626de2b9413715651dffe9e394 (diff) | |
download | gnutls-tmp-dh-2048.tar.gz |
fips: use larger prime for DH self-teststmp-dh-2048
According to FIPS140-2 IG 7.5, the minimum key size of FFC through
2030 is defined as 2048 bits. This updates the relevant self-test
using ffdhe3072 defined in RFC 7919.
Signed-off-by: Daiki Ueno <ueno@gnu.org>
Diffstat (limited to 'lib/dh-primes.c')
-rw-r--r-- | lib/dh-primes.c | 4 |
1 files changed, 0 insertions, 4 deletions
diff --git a/lib/dh-primes.c b/lib/dh-primes.c index a440b5b98a..94b69e3450 100644 --- a/lib/dh-primes.c +++ b/lib/dh-primes.c @@ -23,8 +23,6 @@ #include "gnutls_int.h" #include <gnutls/gnutls.h> -#if defined(ENABLE_DHE) || defined(ENABLE_ANON) - #include "dh.h" static const unsigned char ffdhe_generator = 0x02; @@ -1934,5 +1932,3 @@ _gnutls_dh_prime_match_fips_approved(const uint8_t *prime, return 0; } - -#endif |