This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author pitrou
Recipients naif, pitrou
Date 2011-12-18.16:03:52
SpamBayes Score 3.94172e-07
Marked as misclassified No
Message-id <>
Well the OpenSSL docs say “DH_generate_parameters() may run for several hours before finding a suitable prime”, which sounds like a good reason not to do it every time your program is run.

Anyway, SSL_CTX_set_tmp_dh() should allow us to set DH parameters on a SSL context, PEM_read_DHparams() to read them from a PEM file, and OpenSSL's source tree has a couple of PEM files with "strong" DH parameters for various key sizes.
Date User Action Args
2011-12-18 16:04:53pitrousetrecipients: + pitrou, naif
2011-12-18 16:04:53pitrousetmessageid: <>
2011-12-18 16:03:52pitroulinkissue13626 messages
2011-12-18 16:03:52pitroucreate