Add limit for RSA bits
This commit is contained in:
Simon Ser
parent
f93616fb41
commit
5405923aa2
@ -32,6 +32,10 @@ const serviceNick = "BouncerServ"
|
|||||||
const serviceNickCM = "bouncerserv"
|
const serviceNickCM = "bouncerserv"
|
||||||
const serviceRealname = "soju bouncer service"
|
const serviceRealname = "soju bouncer service"
|
||||||
|
|
||||||
|
// maxRSABits is the maximum number of RSA key bits used when generating a new
|
||||||
|
// private key.
|
||||||
|
const maxRSABits = 8192
|
||||||
|
|
||||||
var servicePrefix = &irc.Prefix{
|
var servicePrefix = &irc.Prefix{
|
||||||
Name: serviceNick,
|
Name: serviceNick,
|
||||||
User: serviceNick,
|
User: serviceNick,
|
||||||
@ -641,6 +645,9 @@ func handleServiceCertfpGenerate(dc *downstreamConn, params []string) error {
|
|||||||
)
|
)
|
||||||
switch *keyType {
|
switch *keyType {
|
||||||
case "rsa":
|
case "rsa":
|
||||||
|
if *bits <= 0 || *bits > maxRSABits {
|
||||||
|
return fmt.Errorf("invalid value for -bits")
|
||||||
|
}
|
||||||
key, err := rsa.GenerateKey(rand.Reader, *bits)
|
key, err := rsa.GenerateKey(rand.Reader, *bits)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
return err
|
return err
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user