test_rsaGeneration uses too low bits
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
pyOpenSSL |
New
|
Undecided
|
Unassigned |
Bug Description
With certain security-enhanced versions of OpenSSL, test_crypto.py fails as it tries to generate a RSA key with only 128 bits. RSA keys below 1024 bits can be considered insecure and have been deprecated as of December 31st, 2013:
http://
Please consider applying this patch:
--- a/pyOpenSSL-
+++ b/pyOpenSSL-
@@ -608,7 +608,7 @@
"""
- bits = 128
+ bits = 2048
key = PKey()