Home GnuPG
Diffusion GnuPG aae7ec516b79

Limit keysize for unattended key generation to useful values.
aae7ec516b79Unpublished

Unpublished Commit ยท Learn More

Not On Permanent Ref: This commit is not an ancestor of any permanent ref.

Description

Limit keysize for unattended key generation to useful values.

* g10/keygen.c (gen_elg): Enforce keysize 1024 to 4096.
(gen_rsa): Enforce keysize 1024 to 4096.
(gen_dsa): Enforce keysize 768 to 3072.

It was possible to create 16k RSA keys in batch mode. In addition to
the silliness of such keys, they have the major drawback that GnuPG,
with its limited amount of specially secured memory areas, the use of
such keys may lead to an "out of secure memory" condition.

Details

Provenance
wernerAuthored on Jun 25 2014, 8:25 PM
Parents
rG955524f4359b: Make screening of keyserver result work with multi-key commands.
Branches
Unknown
Tags
Unknown

Event Timeline