git.ipfire.org Git - thirdparty/Python/cpython.git/commit

]> git.ipfire.org Git - thirdparty/Python/cpython.git/commit

projects / thirdparty / Python / cpython.git / commit

author	Christian Heimes <christian@python.org>
	Tue, 14 Aug 2018 14:53:04 +0000 (16:53 +0200)
committer	GitHub <noreply@github.com>
	Tue, 14 Aug 2018 14:53:04 +0000 (16:53 +0200)
commit	1f34aece28d143edb94ca202e661364ca394dc8c
tree	bdd278e48bcb0ae77f00a045dfa7e99ef4ba9380	tree \| snapshot
parent	d1c5e278a1a2458bc5efcdc300c17f9e39a59b6c	commit \| diff

[2.7] bpo-34399: 2048 bits RSA keys and DH params (GH-8762) (GH-8765)

Downstream vendors have started to deprecate weak keys. Update all RSA keys
and DH params to use at least 2048 bits.

Finite field DH param file use RFC 7919 values, generated with

certtool --get-dh-params --sec-param=high

Signed-off-by: Christian Heimes <christian@python.org>.
(cherry picked from commit 88bfd0bce05043f658e50addd21366f317995e35)

Co-authored-by: Christian Heimes <christian@python.org>

16 files changed:

Lib/test/allsans.pem		diff \| blob \| blame \| history
Lib/test/dh1024.pem	[deleted file]	blob \| blame \| history
Lib/test/ffdh3072.pem	[new file with mode: 0644]	blob
Lib/test/keycert.passwd.pem		diff \| blob \| blame \| history
Lib/test/keycert.pem		diff \| blob \| blame \| history
Lib/test/keycert2.pem		diff \| blob \| blame \| history
Lib/test/keycert3.pem		diff \| blob \| blame \| history
Lib/test/keycert4.pem		diff \| blob \| blame \| history
Lib/test/pycacert.pem		diff \| blob \| blame \| history
Lib/test/revocation.crl		diff \| blob \| blame \| history
Lib/test/ssl_cert.pem		diff \| blob \| blame \| history
Lib/test/ssl_key.passwd.pem		diff \| blob \| blame \| history
Lib/test/ssl_key.pem		diff \| blob \| blame \| history
Lib/test/test_ssl.py		diff \| blob \| blame \| history
Lib/test/wrongcert.pem	[deleted file]	blob \| blame \| history
Misc/NEWS.d/next/Tests/2018-08-14-10-47-44.bpo-34399.D_jd1G.rst	[new file with mode: 0644]	blob

Mirror of https://github.com/python/cpython.git

RSS Atom