You are viewing a plain text version of this content. The canonical link for it is here.

Posted to commits@directory.apache.org by el...@apache.org on 2019/04/30 08:51:12 UTC

[directory-server] 01/02: Applied PR #2 (Upgrade signature hash of generate key)

This is an automated email from the ASF dual-hosted git repository.

elecharny pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/directory-server.git

commit d97871c6a6045443248e249c899b2f2c3e3e5767
Author: emmanuel lecharny <el...@apache.org>
AuthorDate: Tue Apr 30 10:50:06 2019 +0200

    Applied PR #2 (Upgrade signature hash of generate key)
---
 .../org/apache/directory/server/core/security/TlsKeyGenerator.java    | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/core/src/main/java/org/apache/directory/server/core/security/TlsKeyGenerator.java b/core/src/main/java/org/apache/directory/server/core/security/TlsKeyGenerator.java
index c6e2188..9404cf6 100644
--- a/core/src/main/java/org/apache/directory/server/core/security/TlsKeyGenerator.java
+++ b/core/src/main/java/org/apache/directory/server/core/security/TlsKeyGenerator.java
@@ -94,7 +94,7 @@ public final class TlsKeyGenerator
      * 
      *    http://www.apache.org/licenses/exports
      */
-    private static final int KEY_SIZE = 512;
+    private static final int KEY_SIZE = 1024;
     public static final long YEAR_MILLIS = 365L * 24L * 3600L * 1000L;
 
     static
@@ -307,7 +307,7 @@ public final class TlsKeyGenerator
         certGen.setNotAfter( expiryDate );
         certGen.setSubjectDN( subjectName );
         certGen.setPublicKey( publicKey );
-        certGen.setSignatureAlgorithm( "SHA1With" + keyAlgo );
+        certGen.setSignatureAlgorithm( "SHA256With" + keyAlgo );
         
 
         try