serv/mox
1
0
Fork 0
mirror of https://github.com/mjl-/mox.git synced 2025-01-29 23:55:59 +03:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

dkim: add reference to rfc that says not to accept rsa keys < 1024 bits

Browse source 
saw it mentioned on HN recently
This commit is contained in:
Mechiel Lukkien 2025-01-13 10:35:25 +01:00
parent e5eaf4d46f
commit eb88e2651a
No known key found for this signature in database
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
dkim/dkim.go
View file

@ -548,7 +548,7 @@ func verifySignatureRecord(r *Record, sig *Sig, hash crypto.Hash, canonHeaderSim
if r.PublicKey == nil { if r.PublicKey == nil {
return StatusPermerror, ErrKeyRevoked return StatusPermerror, ErrKeyRevoked
} else if rsaKey, ok := r.PublicKey.(*rsa.PublicKey); ok && rsaKey.N.BitLen() < 1024 { } else if rsaKey, ok := r.PublicKey.(*rsa.PublicKey); ok && rsaKey.N.BitLen() < 1024 {
// todo: find a reference that supports this. // ../rfc/8301:157
return StatusPermerror, ErrWeakKey return StatusPermerror, ErrWeakKey
} }