Skip to content

Commit

Permalink
Add checks for ROCA-vulnerable RSA keys
Browse files Browse the repository at this point in the history
  • Loading branch information
@iay
iay committed Oct 18, 2017
1 parent 1693bdc commit ffac2b8
Show file tree
Hide file tree
Showing 4 changed files with 6 additions and 0 deletions.
2 changes: 2 additions & 0 deletions mdx/common-beans.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -1037,6 +1037,8 @@
p:warningBoundary="0" p:errorBoundary="2048"/>
<!-- Error on small RSA public exponents. -->
<bean parent="mda.X509RSAExponentValidator"/>
<!-- Error on keys vulnerable to ROCA. -->
<bean p:id="ROCA" parent="ukf.X509ROCAValidator"/>

<!--
Debian weak key blacklists.
Expand Down
2 changes: 2 additions & 0 deletions mdx/uk/beans.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -306,6 +306,8 @@
p:warningBoundary="0" p:errorBoundary="2048"/>
<!-- Error on small RSA public exponents. -->
<bean parent="mda.X509RSAExponentValidator"/>
<!-- Error on keys vulnerable to ROCA. -->
<bean p:id="ROCA" parent="ukf.X509ROCAValidator"/>

<!--
Debian weak key blacklists.
Expand Down
2 changes: 2 additions & 0 deletions mdx/uk/verbs.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -314,6 +314,8 @@
p:warningBoundary="0" p:errorBoundary="2048"/>
<!-- Error on small RSA public exponents. -->
<bean parent="mda.X509RSAExponentValidator"/>
<!-- Error on keys vulnerable to ROCA. -->
<bean p:id="ROCA" parent="ukf.X509ROCAValidator"/>

<!--
Debian weak key blacklists.
Expand Down
Binary file renamed tools/ukf-mda/ukf-mda-0.9.5.jar → tools/ukf-mda/ukf-mda-0.9.6.jar
View file
Binary file not shown.

0 comments on commit ffac2b8

Please sign in to comment.