+perl, last uploader of libanyevent-perl On 2019-02-28 22:15:48 [+0100], To Paul Gevers wrote: > On 2019-02-28 12:40:25 [+0100], Paul Gevers wrote: > > Source: stunnel4 > > Version: 3:5.50-2 > > > __DIE__ handler invoked: dh params schmorp1539: failed to set DH > > parameters at debian/tests/runtime line 295. > > dh params schmorp1539: failed to set DH parameters at > > debian/tests/runtime line 295. > > This error is due to > |commit 3ccccb91ae1c07a4310778b3d7ba74ff4ff787f0 > |Author: Paul Yang <yang.y...@baishancloud.com> > |Date: Wed Nov 21 13:16:27 2018 +0800 > | > | Fix wrong return value in ssl3_ctx_ctrl
The patch attached fixes the issue in libanyevent-perl by setting the default DH value to 2048. Moving forward: - apply the patch to libanyevent-perl and be done with it - tell the stunnel4 testsuite to use 2048bit DH instead the default value. Sebastian
diff -purN libanyevent-perl-7.140/lib/AnyEvent/TLS.pm libanyevent-perl-7.140-patched/lib/AnyEvent/TLS.pm --- libanyevent-perl-7.140/lib/AnyEvent/TLS.pm 2019-03-01 20:49:35.000000000 +0100 +++ libanyevent-perl-7.140-patched/lib/AnyEvent/TLS.pm 2019-03-01 21:05:56.410919571 +0100 @@ -472,7 +472,7 @@ of course. =item dh => $string Specify the Diffie-Hellman parameters in PEM format directly as a string -(see C<dh_file>), the default is C<schmorp1539> unless C<dh_file> was +(see C<dh_file>), the default is C<schmorp2048> unless C<dh_file> was specified. AnyEvent::TLS supports supports a number of precomputed DH parameters, @@ -631,7 +631,7 @@ sub new { $dh_bio = Net::SSLeay::BIO_new_file ($dh_file, "r") or croak "$dh_file: failed to open DH parameter file: $!"; } else { - $arg{dh} = "schmorp1539" unless exists $arg{dh}; + $arg{dh} = "schmorp2048" unless exists $arg{dh}; if (defined $arg{dh}) { $dh_file = "dh string";