This function sets the number of bits, for use in a
Diffie-Hellman key exchange. This is used both in DH ephemeral
and DH anonymous cipher suites. This will set the minimum size
of the prime that will be used for the handshake.
In the client side it sets the minimum accepted number of bits.
If a server sends a prime with less bits than that
GNUTLS_E_DH_PRIME_UNACCEPTABLE will be returned by the handshake.
Note that this function will warn via the audit log for value
that are believed to be weak.
The function has no effect in server side.
Note that since 3.1.7 this function is deprecated. The minimum
number of bits is set by the priority string level. Also this
function must be called after gnutls_priority_set_direct() or the
set value may be overridden by the selected priority options.
This page is part of the GnuTLS (GnuTLS Transport Layer Security
Library) project. Information about the project can be found at
⟨http://www.gnutls.org/⟩. If you have a bug report for this
manual page, send it to email@example.com. This page was obtained
from the tarball gnutls-3.7.1.tar.xz fetched from
⟨http://www.gnutls.org/download.html⟩ on 2021-04-01. If you
discover any rendering problems in this HTML version of the page,
or you believe there is a better or more up-to-date source for
the page, or you have corrections or improvements to the
information in this COLOPHON (which is not part of the original
manual page), send a mail to firstname.lastname@example.org
gnutls 3.7.1 gnutls_dh_set_prime_bits(3)