Return-Path: X-Original-To: apmail-httpd-dev-archive@www.apache.org Delivered-To: apmail-httpd-dev-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 25E2A11977 for ; Thu, 26 Jun 2014 16:24:19 +0000 (UTC) Received: (qmail 3241 invoked by uid 500); 26 Jun 2014 16:24:18 -0000 Delivered-To: apmail-httpd-dev-archive@httpd.apache.org Received: (qmail 3169 invoked by uid 500); 26 Jun 2014 16:24:18 -0000 Mailing-List: contact dev-help@httpd.apache.org; run by ezmlm Precedence: bulk Reply-To: dev@httpd.apache.org list-help: list-unsubscribe: List-Post: List-Id: Delivered-To: mailing list dev@httpd.apache.org Received: (qmail 3155 invoked by uid 99); 26 Jun 2014 16:24:18 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 26 Jun 2014 16:24:18 +0000 X-ASF-Spam-Status: No, hits=-5.0 required=5.0 tests=RCVD_IN_DNSWL_HI,SPF_HELO_PASS,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (athena.apache.org: domain of jorton@redhat.com designates 209.132.183.28 as permitted sender) Received: from [209.132.183.28] (HELO mx1.redhat.com) (209.132.183.28) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 26 Jun 2014 16:24:10 +0000 Received: from int-mx11.intmail.prod.int.phx2.redhat.com (int-mx11.intmail.prod.int.phx2.redhat.com [10.5.11.24]) by mx1.redhat.com (8.14.4/8.14.4) with ESMTP id s5QGNmUa027655 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=OK) for ; Thu, 26 Jun 2014 12:23:48 -0400 Received: from iberis (vpn-54-98.rdu2.redhat.com [10.10.54.98]) by int-mx11.intmail.prod.int.phx2.redhat.com (8.14.4/8.14.4) with ESMTP id s5QGNlYO006567 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO) for ; Thu, 26 Jun 2014 12:23:48 -0400 Received: from jorton by iberis with local (Exim 4.80.1) (envelope-from ) id 1X0CSg-0007f1-W9 for dev@httpd.apache.org; Thu, 26 Jun 2014 17:23:46 +0100 Date: Thu, 26 Jun 2014 17:23:46 +0100 From: Joe Orton To: dev@httpd.apache.org Subject: Re: yet another mod_ssl temp DH handling tweak Message-ID: <20140626162346.GA25136@redhat.com> Mail-Followup-To: dev@httpd.apache.org References: <20140528193411.GA26366@redhat.com> <538642A8.5040702@apache.org> <20140529123339.GA14091@redhat.com> <538CC751.6040000@apache.org> <539C0950.4010001@velox.ch> <20140619151039.GA13922@redhat.com> <20140619152917.GA16245@redhat.com> <20140619211718.GA27415@redhat.com> <53A53315.4060302@velox.ch> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: <53A53315.4060302@velox.ch> User-Agent: Mutt/1.5.23 (2014-03-12) Organization: Registered in England and Wales under Company Registration No. 03798903 Directors: Michael Cunningham (US), Michael O'Neill (Ireland), Matt Parson (US), Charles Peters (US) X-Scanned-By: MIMEDefang 2.68 on 10.5.11.24 X-Virus-Checked: Checked by ClamAV on apache.org On Sat, Jun 21, 2014 at 09:24:05AM +0200, Kaspar Brand wrote: > On 19.06.2014 23:17, Joe Orton wrote: > > I was reminded that there was a request to use the larger key sizes as > > well. > > Using ephemeral DH keys with sizes > 4096 bits in TLS seems way overkill > for the next decade or so (3072 bits are already considered to have a > 128-bit symmetric-key strength), but if it makes people happy to use > unreasonably large keys, then so be it... the docs for > SSLCertificateFile should also be updated in this case. Thanks to you & RĂ¼diger for review! r1605827 & r1605829 > > +/* Storage and initialization for DH parameters. */ > > +static struct dhparam { > > + BIGNUM *(*const prime)(BIGNUM *); /* function to generate... */ > > + DH *dh; /* ...this, used for keys.... */ > > + const unsigned int min; /* ...of length >= this. */ > > +} dhparams[] = { > > + { get_rfc3526_prime_8192, NULL, 6145 }, > > + { get_rfc3526_prime_6144, NULL, 4097 }, > > + { get_rfc3526_prime_4096, NULL, 3073 }, > > + { get_rfc3526_prime_3072, NULL, 2049 }, > > + { get_rfc3526_prime_2048, NULL, 1025 }, > > + { get_rfc2409_prime_1024, NULL, 0 } > > +}; > > Perhaps the "min" values could increased somewhat - > 7168/5120/3584/2560/1536 (i.e. "half way" between two steps)? I've a mild preference for keeping to the 1K multiples, since half way is kind of arbitrary... if you or anybody else feels strongly about this I'm happy to adjust. Regards, Joe