Skip to content

Commit d520dea

Browse files
SummerBootFrameworkSummerBootFramework
committed
fix: Use of a cryptographic algorithm with insufficient key size
1 parent 5dc90d4 commit d520dea

File tree

1 file changed

+1
-0
lines changed

1 file changed

+1
-0
lines changed

src/main/java/org/summerboot/jexpress/security/EncryptorUtil.java

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -485,6 +485,7 @@ public static KeyPair generateKeyPairEC() throws NoSuchAlgorithmException, Inval
485485
public static KeyPair generateKeyPair(String keyfactoryAlgorithm, int size) throws NoSuchAlgorithmException, InvalidKeySpecException, InvalidAlgorithmParameterException, NoSuchProviderException {
486486
if (keyfactoryAlgorithm == null) {
487487
keyfactoryAlgorithm = "EC";
488+
size = 256; // default to EC with 256 bits
488489
}
489490
keyfactoryAlgorithm = keyfactoryAlgorithm.toUpperCase();
490491
KeyPairGenerator kpg;

0 commit comments

Comments
 (0)