[gnutls-devel] GnuTLS | certtool --sec-param high generates a smaller key than expected (#1320)
Read-only notification of GnuTLS library development activities
gnutls-devel at lists.gnutls.org
Thu Feb 10 10:18:36 CET 2022
Patrik Lundquist created an issue: https://gitlab.com/gnutls/gnutls/-/issues/1320
## Description of problem:
Using `certtool --sec-param high` per recommendation from certtool generates a smaller key than expected.
## Version of gnutls used:
3.7.3
## Distributor of gnutls (e.g., Ubuntu, Fedora, RHEL)
Ubuntu
## How reproducible:
```
certtool --generate-privkey --bits=4096 --outfile some.key
** Note: You may use '--sec-param High' instead of '--bits 4096'
Generating a 4096 bit RSA private key...
```
OK, lets use `--sec-param high` instead of `--bits=4096`.
## Actual results:
```
certtool --generate-privkey --sec-param high --outfile some.key
Generating a 3072 bit RSA private key...
```
## Expected results:
```
certtool --generate-privkey --sec-param high --outfile some.key
Generating a 4096 bit RSA private key...
```
--
Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/issues/1320
You're receiving this email because of your account on gitlab.com.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20220210/49097957/attachment-0001.html>
More information about the Gnutls-devel
mailing list