]> git.ipfire.org Git - thirdparty/Python/cpython.git/commit
projects / thirdparty / Python / cpython.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: aa4e4a4) | patch
bpo-34399: 2048 bits RSA keys and DH params (#8762)
authorChristian Heimes <christian@python.org>
Tue, 14 Aug 2018 10:54:19 +0000 (12:54 +0200)
committerGitHub <noreply@github.com>
Tue, 14 Aug 2018 10:54:19 +0000 (12:54 +0200)
commit88bfd0bce05043f658e50addd21366f317995e35
tree26b3e29e74c072255ed8f81ef8ed6dd2c0b6b908tree | snapshot
parentaa4e4a40db531f7095513a4b0aa6510f18162a07commit | diff
bpo-34399: 2048 bits RSA keys and DH params (#8762)

Downstream vendors have started to deprecate weak keys. Update all RSA keys
and DH params to use at least 2048 bits.

Finite field DH param file use RFC 7919 values, generated with

    certtool --get-dh-params --sec-param=high

Signed-off-by: Christian Heimes <christian@python.org>
Lib/test/dh1024.pem [deleted file] blob | blame | history
Lib/test/ffdh3072.pem [new file with mode: 0644] blob
Lib/test/test_ssl.py diff | blob | blame | history
Lib/test/wrongcert.pem [deleted file] blob | blame | history
Misc/NEWS.d/next/Tests/2018-08-14-10-47-44.bpo-34399.D_jd1G.rst [new file with mode: 0644] blob
Mirror of https://github.com/python/cpython.git