Cutlery/calibre
1
0
Fork 0
mirror of https://github.com/kovidgoyal/calibre.git synced 2026-01-07 20:50:20 -05:00
Code Issues Packages Projects Releases Wiki Activity

certgen: Use AES 256 as the CBC when serializing RSA keys

Browse Source 
That is the current standard recommendation
This commit is contained in:
Kovid Goyal 2025-09-15 19:03:43 +05:30
parent 57dc9a0bcb
commit e8868c8e83
No known key found for this signature in database
GPG Key ID: 06BC317B515ACE7C
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
src/calibre/utils/certgen.c
View File

@ -369,8 +369,8 @@ static PyObject* serialize_rsa_key(PyObject *self, PyObject *args) {
mem = BIO_new(BIO_s_mem());
if (!mem) {set_error("BIO_new"); goto error; }
if (password && *password) ok = PEM_write_bio_PrivateKey(mem, keypair, EVP_des_ede3_cbc(), NULL, 0, 0, password);
else ok = PEM_write_bio_PrivateKey(mem, keypair, NULL, NULL, 0, 0, NULL);
if (password && *password) ok = PEM_write_bio_PKCS8PrivateKey(mem, keypair, EVP_aes_256_cbc(), NULL, 0, 0, password);
else ok = PEM_write_bio_PKCS8PrivateKey(mem, keypair, NULL, NULL, 0, 0, NULL);
if (!ok) { set_error("PEM_write_bio_PrivateKey"); goto error; }
sz = BIO_get_mem_data(mem, &p);
Py_ssize_t psz = sz;