Home GnuPG
Diffusion GnuPG 48d92bcc8870

gpg: Limit keysize for unattended key generation to useful values.
48d92bcc8870Unpublished
Actions

Unpublished Commit · Learn More

Not On Permanent Ref: This commit is not an ancestor of any permanent ref.

Description

gpg: Limit keysize for unattended key generation to useful values.

* g10/keygen.c (gen_elg): Enforce keysize 1024 to 4096.
(gen_rsa): Enforce keysize 1024 to 4096.
(gen_dsa): Enforce keysize 768 to 3072.

It was possible to create 16k RSA keys in batch mode. In addition to the
silliness of such keys, they have the major drawback that under GnuPG
and Libgcrypt, with their limited amount of specially secured memory
areas, the use of such keys may lead to an "out of secure memory"
condition.

Details

Provenance
wernerAuthored on Jun 25 2014, 8:25 PM
Parents
rG045c979a7673: agent: Let gpg-protect-tool pass envvars to pinentry.
Branches
Unknown
Tags
Unknown

Event Timeline

Werner Koch <wk@gnupg.org> committed rG48d92bcc8870: gpg: Limit keysize for unattended key generation to useful values. (authored by Werner Koch <wk@gnupg.org>).Jun 27 2014, 9:50 AM

Changes (1)

PathSize
g10/

rG48d92bcc8870

View Options

g10/keygen.c

Loading...