View Ticket
EuroTcl/OpenACS 11 - 12 JULY 2024, VIENNA
13:11 New ticket [0271e75530] different dh param bit sizes in server key exchange. artifact: 022949b9d5 user: anonymous

Ticket Hash: 0271e755307824a64957e3ffef9bac9386069bbc
Title: different dh param bit sizes in server key exchange
Status: Open Type: Code Defect
Severity: Critical Priority:
Subsystem: Resolution:
Last Modified: 2023-08-21 13:11:53
Version Found In: tls1.7.21
User Comments:
anonymous added on 2023-08-21 13:11:53:

Although when server socket was opened, it had -certfile and -keyfile generated with 4096 bit size.

When server respond to client hello (tls1.2), tls lib always uses default dh key size 2048.

[Server Key exchange record is sending 256 bytes (DH key size of 2048)]