The bug
npm start will fail on systems with OpenSSL >= 1.1.1
How to reproduce
- Use latest version of Kali Linux or modify
/etc/ssl/openssl.cnf and set CipherString to DEFAULT@SECLEVEL=2
- Run
npm start
This will throw an error:
$ npm start
> BitShares2-light@3.3.191120 start /tmp/ui
> cross-env NODE_ENV=development node server.js
_tls_common.js:135
c.context.setCert(cert);
^
Error: error:140AB18F:SSL routines:SSL_CTX_use_certificate:ee key too small
at Object.createSecureContext (_tls_common.js:135:17)
at Server (_tls_wrap.js:873:27)
at new Server (https.js:62:14)
at Object.createServer (https.js:85:10)
at Object.<anonymous> (/tmp/blockbasis-bitshares-ui/ui/server.js:61:7)
at Module._compile (internal/modules/cjs/loader.js:778:30)
at Object.Module._extensions..js (internal/modules/cjs/loader.js:789:10)
at Module.load (internal/modules/cjs/loader.js:653:32)
at tryModuleLoad (internal/modules/cjs/loader.js:593:12)
at Function.Module._load (internal/modules/cjs/loader.js:585:3)
at Function.Module.runMain (internal/modules/cjs/loader.js:831:12)
at startup (internal/bootstrap/node.js:283:19)
at bootstrapNodeJSCore (internal/bootstrap/node.js:623:3)
Additional information about the issue: https://wiki.debian.org/ContinuousIntegration/TriagingTips/openssl-1.1.1
Solution
Generate 2048 bit long keys.
The bug
npm startwill fail on systems with OpenSSL >= 1.1.1How to reproduce
/etc/ssl/openssl.cnfand setCipherStringtoDEFAULT@SECLEVEL=2npm startThis will throw an error:
Additional information about the issue: https://wiki.debian.org/ContinuousIntegration/TriagingTips/openssl-1.1.1
Solution
Generate 2048 bit long keys.