Bug 798860: Generate 1024-bit RSA keys for dtls mtransport streams r=bsmith
authorEKR <ekr@rtfm.com>
Sat, 06 Oct 2012 23:55:23 -0700
changeset 109681 12067455cc2384b78bb24ca3af832139185fe081
parent 109680 1e6444704d705038a745a8ad631ca642334151f7
child 109682 8ccf1936752305b956c2751291b37ce69e998f9d
push id84
push usernmatsakis@mozilla.com
push dateThu, 11 Oct 2012 23:26:24 +0000
reviewersbsmith
bugs798860
milestone18.0a1
Bug 798860: Generate 1024-bit RSA keys for dtls mtransport streams r=bsmith
media/mtransport/dtlsidentity.cpp
--- a/media/mtransport/dtlsidentity.cpp
+++ b/media/mtransport/dtlsidentity.cpp
@@ -48,17 +48,18 @@ TemporaryRef<DtlsIdentity> DtlsIdentity:
 
   std::string subject_name_string = "CN=" + name;
   ScopedCERTName subject_name(CERT_AsciiToName(subject_name_string.c_str()));
   if (!subject_name) {
     return nullptr;
   }
 
   PK11RSAGenParams rsaparams;
-  rsaparams.keySizeInBits = 2048; // Minimum value Mozilla recommends for TLS
+  rsaparams.keySizeInBits = 1024; // TODO: make this stronger when we
+                                  // pre-generate.
   rsaparams.pe = 65537; // We are too paranoid to use 3 as the exponent.
 
   ScopedSECKEYPrivateKey private_key;
   ScopedSECKEYPublicKey public_key;
   SECKEYPublicKey *pubkey;
 
   private_key =
       PK11_GenerateKeyPair(slot,