Bug 798860: Generate 1024-bit RSA keys for dtls mtransport streams r=bsmith
authorEKR <ekr@rtfm.com>
Sat, 06 Oct 2012 23:55:23 -0700
changeset 109568 12067455cc2384b78bb24ca3af832139185fe081
parent 109567 1e6444704d705038a745a8ad631ca642334151f7
child 109569 8ccf1936752305b956c2751291b37ce69e998f9d
push id23632
push userphilringnalda@gmail.com
push dateSun, 07 Oct 2012 19:14:37 +0000
treeherdermozilla-central@83d38854c21e [default view] [failures only]
perfherder[talos] [build metrics] [platform microbench] (compared to previous push)
reviewersbsmith
bugs798860
milestone18.0a1
first release with
nightly linux32
nightly linux64
nightly mac
nightly win32
nightly win64
last release without
nightly linux32
nightly linux64
nightly mac
nightly win32
nightly win64
Bug 798860: Generate 1024-bit RSA keys for dtls mtransport streams r=bsmith
media/mtransport/dtlsidentity.cpp
--- a/media/mtransport/dtlsidentity.cpp
+++ b/media/mtransport/dtlsidentity.cpp
@@ -48,17 +48,18 @@ TemporaryRef<DtlsIdentity> DtlsIdentity:
 
   std::string subject_name_string = "CN=" + name;
   ScopedCERTName subject_name(CERT_AsciiToName(subject_name_string.c_str()));
   if (!subject_name) {
     return nullptr;
   }
 
   PK11RSAGenParams rsaparams;
-  rsaparams.keySizeInBits = 2048; // Minimum value Mozilla recommends for TLS
+  rsaparams.keySizeInBits = 1024; // TODO: make this stronger when we
+                                  // pre-generate.
   rsaparams.pe = 65537; // We are too paranoid to use 3 as the exponent.
 
   ScopedSECKEYPrivateKey private_key;
   ScopedSECKEYPublicKey public_key;
   SECKEYPublicKey *pubkey;
 
   private_key =
       PK11_GenerateKeyPair(slot,