modern openssl needs rsa key >= 2048

per https://docs.openssl.org/3.3/man3/SSL_CTX_set_security_level/#default-callback-behaviour the default "security level" in openssl 3.3 is 2
2025-10-20 23:45:53 +01:00
parent 72acb2e711
commit 1b14161a0e
1 changed files with 1 additions and 1 deletions
--- a/pkgs/certifix-client/certifix-client.fnl
+++ b/pkgs/certifix-client/certifix-client.fnl
@@ -53,7 +53,7 @@
 (local options (parse-args arg))

 (fn private-key []
-  (pkey.new { :type :rsa :bits 1024 }))
+  (pkey.new { :type :rsa :bits 2048 }))

 (fn signing-request [pk]
  (doto (csr.new)