From 1fb62ccc6360a4c29fc24fbc0ec82508356752fc Mon Sep 17 00:00:00 2001
From: Peter Mosmans <support@go-forward.net>
Date: Fri, 10 Jul 2015 09:52:58 +1000
Subject: [PATCH] Removed DH parameter size restriction

---
 ssl/s3_clnt.c | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/ssl/s3_clnt.c b/ssl/s3_clnt.c
index 4fa20472c43c5..14368bf3d7b5c 100644
--- a/ssl/s3_clnt.c
+++ b/ssl/s3_clnt.c
@@ -3609,7 +3609,7 @@ if (alg_k & (SSL_kRSA
         goto f_err;
     }
 # endif
-
+/** Removed check on purpose to allow DH parameters <768
     if (alg_k & (SSL_kDHE | SSL_kDHr | SSL_kDHd)) {
         int dh_size;
         if (alg_k & SSL_kDHE) {
@@ -3628,6 +3628,7 @@ if (alg_k & (SSL_kRSA
             goto f_err;
         }
     }
+**/
 #endif  /* !OPENSSL_NO_DH */
 
     if (SSL_C_IS_EXPORT(s->s3->tmp.new_cipher) &&