Issue in DH Algorithm Keys Generation in OpenSSL 3.3.0
Viktor Dukhovni
openssl-users at dukhovni.org
Fri May 31 12:43:54 UTC 2024
On Fri, May 31, 2024 at 12:39:12PM +0000, Vishal Kevat via openssl-users wrote:
> Is there any way to make this prime number work by doing some
> modifications in the openssl source code.
It ISN'T a *prime* number.
> Like bypassing the OpenSSL DH prime check?
Why do you want to use a broken DH group? Even if that 128-bit
composite number were instead prime, it would still be way too small to
offer any security.
It is hard to imagine how what you're asking for makes any sense.
--
Viktor.
More information about the openssl-users
mailing list