+perl, last uploader of libanyevent-perl
On 2019-02-28 22:15:48 [+0100], To Paul Gevers wrote:
> On 2019-02-28 12:40:25 [+0100], Paul Gevers wrote:
> > Source: stunnel4
> > Version: 3:5.50-2
>
> > __DIE__ handler invoked: dh params schmorp1539: failed to set DH
> > parameters at debian/tests/runtime line 295.
> > dh params schmorp1539: failed to set DH parameters at
> > debian/tests/runtime line 295.
>
> This error is due to
> |commit 3ccccb91ae1c07a4310778b3d7ba74ff4ff787f0
> |Author: Paul Yang <yang.y...@baishancloud.com>
> |Date: Wed Nov 21 13:16:27 2018 +0800
> |
> | Fix wrong return value in ssl3_ctx_ctrl
The patch attached fixes the issue in libanyevent-perl by setting the
default DH value to 2048.
Moving forward:
- apply the patch to libanyevent-perl and be done with it
- tell the stunnel4 testsuite to use 2048bit DH instead the default
value.
Sebastian
diff -purN libanyevent-perl-7.140/lib/AnyEvent/TLS.pm libanyevent-perl-7.140-patched/lib/AnyEvent/TLS.pm
--- libanyevent-perl-7.140/lib/AnyEvent/TLS.pm 2019-03-01 20:49:35.000000000 +0100
+++ libanyevent-perl-7.140-patched/lib/AnyEvent/TLS.pm 2019-03-01 21:05:56.410919571 +0100
@@ -472,7 +472,7 @@ of course.
=item dh => $string
Specify the Diffie-Hellman parameters in PEM format directly as a string
-(see C<dh_file>), the default is C<schmorp1539> unless C<dh_file> was
+(see C<dh_file>), the default is C<schmorp2048> unless C<dh_file> was
specified.
AnyEvent::TLS supports supports a number of precomputed DH parameters,
@@ -631,7 +631,7 @@ sub new {
$dh_bio = Net::SSLeay::BIO_new_file ($dh_file, "r")
or croak "$dh_file: failed to open DH parameter file: $!";
} else {
- $arg{dh} = "schmorp1539" unless exists $arg{dh};
+ $arg{dh} = "schmorp2048" unless exists $arg{dh};
if (defined $arg{dh}) {
$dh_file = "dh string";
