[vlc-commits] [Git][videolan/vlc][master] gnutls: remove manual DH prime bits setting
Steve Lhomme (@robUx4)
gitlab at videolan.org
Wed May 14 09:36:33 UTC 2025
Steve Lhomme pushed to branch master at VideoLAN / VLC
Commits:
3c9e4df1 by William Woodruff at 2025-05-14T08:54:45+00:00
gnutls: remove manual DH prime bits setting
This sets the DH group to an unnecessarily and
insecure small size. By removing this function
call GnuTLS will select an appropriate DH
group from the priority string which, when
configured appropriately, will always be
a 2048-bit or larger group.
Signed-off-by: William Woodruff <william at trailofbits.com>
- - - - -
1 changed file:
- modules/misc/gnutls.c
Changes:
=====================================
modules/misc/gnutls.c
=====================================
@@ -386,9 +386,6 @@ static vlc_tls_t *gnutls_ClientSessionOpen(vlc_tls_client_t *crd,
gnutls_session_t session = priv->session;
- /* minimum DH prime bits */
- gnutls_dh_set_prime_bits (session, 1024);
-
if (likely(hostname != NULL))
/* fill Server Name Indication */
gnutls_server_name_set (session, GNUTLS_NAME_DNS,
View it on GitLab: https://code.videolan.org/videolan/vlc/-/commit/3c9e4df184162940c43fcf1f6e51421fca4e2ac4
--
View it on GitLab: https://code.videolan.org/videolan/vlc/-/commit/3c9e4df184162940c43fcf1f6e51421fca4e2ac4
You're receiving this email because of your account on code.videolan.org.
VideoLAN code repository instance
More information about the vlc-commits
mailing list