Skip to content

Commit

Permalink
Treat DSA keys in metadata as errors
Browse files Browse the repository at this point in the history 
See ukf/ukf-meta#117.
  • Loading branch information
@iay
iay committed Dec 18, 2018
1 parent 4619daa commit 8417088
Show file tree
Hide file tree
Showing 4 changed files with 9 additions and 0 deletions.
3 changes: 3 additions & 0 deletions mdx/common-beans.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -1073,6 +1073,9 @@
<bean id="checkCertificates" parent="mda.X509ValidationStage">
<property name="validators">
<list>
<!-- Error on DSA keys. -->
<bean p:id="DSA" parent="ukf.X509DSADetector"/>

<!-- Error on RSA key length less than 2048 bits. -->
<bean p:id="RSAKeyLength" parent="mda.X509RSAKeyLengthValidator"
p:warningBoundary="0" p:errorBoundary="2048"/>
Expand Down
3 changes: 3 additions & 0 deletions mdx/uk/beans.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -368,6 +368,9 @@
<bean id="checkCertificates" parent="mda.X509ValidationStage">
<property name="validators">
<list>
<!-- Error on DSA keys. -->
<bean p:id="DSA" parent="ukf.X509DSADetector"/>

<!-- Error on RSA key length less than 2048 bits. -->
<bean p:id="RSAKeyLength" parent="mda.X509RSAKeyLengthValidator"
p:warningBoundary="0" p:errorBoundary="2048"/>
Expand Down
3 changes: 3 additions & 0 deletions mdx/uk/verbs.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -335,6 +335,9 @@
<bean id="checkCertificates" parent="mda.X509ValidationStage">
<property name="validators">
<list>
<!-- Error on DSA keys. -->
<bean p:id="DSA" parent="ukf.X509DSADetector"/>

<!-- Error on RSA key length less than 2048 bits. -->
<bean p:id="RSAKeyLength" parent="mda.X509RSAKeyLengthValidator"
p:warningBoundary="0" p:errorBoundary="2048"/>
Expand Down
Binary file renamed tools/ukf-mda/ukf-mda-0.9.7.jar → tools/ukf-mda/ukf-mda-0.9.8.jar
View file
Binary file not shown.

0 comments on commit 8417088

Please sign in to comment.