Add sanity checks when generating new RSA keys.
The key size should be a multiple of 8 bits, and it should be between 1024 and 8192 bits.
This commit is contained in:
		
							parent
							
								
									66f325f467
								
							
						
					
					
						commit
						35437a50e2
					
				
					 1 changed files with 9 additions and 0 deletions
				
			
		|  | @ -417,6 +417,15 @@ static bool rsa_keygen(int bits, bool ask) { | |||
| 	FILE *f; | ||||
| 	char *pubname, *privname; | ||||
| 
 | ||||
| 	// Make sure the key size is a multiple of 8 bits.
 | ||||
| 	bits &= ~0x7; | ||||
| 
 | ||||
| 	// Force them to be between 1024 and 8192 bits long.
 | ||||
| 	if(bits < 1024) | ||||
| 		bits = 1024; | ||||
| 	if(bits > 8192) | ||||
| 		bits = 8192; | ||||
| 
 | ||||
| 	fprintf(stderr, "Generating %d bits keys:\n", bits); | ||||
| 
 | ||||
| 	if(!(key = rsa_generate(bits, 0x10001))) { | ||||
|  |  | |||
		Loading…
	
	Add table
		Add a link
		
	
		Reference in a new issue