1 https://bugzilla.mozilla.org/show_bug.cgi?id=1290037
2 --- firefox-50.1.0/netwerk/protocol/http/Http2Session.cpp.orig 2016-10-31 21:15:27.000000000 +0100
3 +++ firefox-50.1.0/netwerk/protocol/http/Http2Session.cpp 2017-01-09 17:45:38.639941993 +0100
5 LOG3(("Http2Session::ConfirmTLSProfile %p FAILED due to DH %d < 2048\n",
7 RETURN_SESSION_ERROR(this, INADEQUATE_SECURITY);
8 - } else if (kea == ssl_kea_ecdh && keybits < 256) { // 256 bits is "security level" of 128
9 - LOG3(("Http2Session::ConfirmTLSProfile %p FAILED due to ECDH %d < 256\n",
10 + } else if (kea == ssl_kea_ecdh && keybits < 224) { // see rfc7540 9.2.1.
11 + LOG3(("Http2Session::ConfirmTLSProfile %p FAILED due to ECDH %d < 224\n",
13 RETURN_SESSION_ERROR(this, INADEQUATE_SECURITY);