You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
verboseWriter.LogSignatureMessage(signature,"Signature uses ECDSA with an unknown curve.");
29
+
result=RuleResult.Fail;
33
30
//We don't actually check the key size for ECDSA since all known values are acceptable.
34
31
break;
35
-
casePublicKeyAlgorithm.RSA:
36
-
if(keyInfo.BitSize==null)
37
-
{
38
-
verboseWriter.LogSignatureMessage(signature,"Signature has an unknown RSA key size.");
39
-
result=RuleResult.Fail;
40
-
}
41
-
elseif(keyInfo.BitSize<MIN_RSADSA_KEY_SIZE)
42
-
{
43
-
verboseWriter.LogSignatureMessage(signature,$"Signature uses a RSA key of size {keyInfo.BitSize} which is below the recommended {MIN_RSADSA_KEY_SIZE}.");
verboseWriter.LogSignatureMessage(signature,$"Signature uses a RSA key of size {keyInfo.BitSize} which is below the recommended {MIN_RSADSA_KEY_SIZE}.");
38
+
result=RuleResult.Fail;
46
39
break;
47
-
casePublicKeyAlgorithm.DSA:
48
-
if(keyInfo.BitSize==null)
49
-
{
50
-
verboseWriter.LogSignatureMessage(signature,"Signature has an unknown DSA key size.");
51
-
result=RuleResult.Fail;
52
-
}
53
-
elseif(keyInfo.BitSize<MIN_RSADSA_KEY_SIZE)
54
-
{
55
-
//Effectively, 1024 is the max for a DSA key, so this will likely always fail.
56
-
verboseWriter.LogSignatureMessage(signature,$"Signature uses a DSA key of size {keyInfo.BitSize} which is below the recommended {MIN_RSADSA_KEY_SIZE}.");
//Effectively, 1024 is the max for a DSA key, so this will likely always fail.
46
+
verboseWriter.LogSignatureMessage(signature,$"Signature uses a DSA key of size {keyInfo.BitSize} which is below the recommended {MIN_RSADSA_KEY_SIZE}.");
47
+
result=RuleResult.Fail;
59
48
break;
60
-
casePublicKeyAlgorithm.Other:
61
-
gotodefault;
62
49
default:
63
50
verboseWriter.LogSignatureMessage(signature,$"Signature uses an unknown algorithm.");
verboseWriter.LogSignatureMessage(signature,"Signature uses ECDSA with an unknown curve.");
33
-
result=RuleResult.Fail;
34
-
}
35
-
elseif(keyInfo.BitSize>MAX_ECDSA_KEY_SIZE)
36
-
{
37
-
verboseWriter.LogSignatureMessage(signature,$"Signature uses ECDSA signature with a key size of {keyInfo.BitSize} exeeding maximum size of {MAX_ECDSA_KEY_SIZE}.");
verboseWriter.LogSignatureMessage(signature,"Signature uses ECDSA with an unknown curve.");
31
+
result=RuleResult.Fail;
40
32
break;
41
-
casePublicKeyAlgorithm.RSA:
42
-
if(keyInfo.BitSize==null)
43
-
{
44
-
verboseWriter.LogSignatureMessage(signature,"Signature has an unknown RSA key size.");
45
-
result=RuleResult.Fail;
46
-
}
47
-
elseif(keyInfo.BitSize>MAX_RSA_KEY_SIZE)
48
-
{
49
-
verboseWriter.LogSignatureMessage(signature,$"Signature uses RSA signature with a key size of {keyInfo.BitSize} exeeding maximum size of {MAX_RSA_KEY_SIZE}.");
verboseWriter.LogSignatureMessage(signature,$"Signature uses ECDSA signature with a key size of {keyInfo.BitSize} exeeding maximum size of {MAX_ECDSA_KEY_SIZE}.");
35
+
result=RuleResult.Fail;
52
36
break;
53
-
casePublicKeyAlgorithm.DSA:
54
-
if(keyInfo.BitSize==null)
55
-
{
56
-
verboseWriter.LogSignatureMessage(signature,"Signature has an unknown DSA key size.");
57
-
result=RuleResult.Fail;
58
-
}
59
-
elseif(keyInfo.BitSize>MAX_DSA_KEY_SIZE)
60
-
{
61
-
verboseWriter.LogSignatureMessage(signature,$"Signature uses DSA signature with a key size of {keyInfo.BitSize} exeeding maximum size of {MAX_DSA_KEY_SIZE}.");
verboseWriter.LogSignatureMessage(signature,$"Signature uses RSA signature with a key size of {keyInfo.BitSize} exeeding maximum size of {MAX_RSA_KEY_SIZE}.");
verboseWriter.LogSignatureMessage(signature,$"Signature uses DSA signature with a key size of {keyInfo.BitSize} exeeding maximum size of {MAX_DSA_KEY_SIZE}.");
51
+
result=RuleResult.Fail;
64
52
break;
65
-
casePublicKeyAlgorithm.Other:
66
-
gotodefault;
67
53
default:
68
54
verboseWriter.LogSignatureMessage(signature,$"Signature uses an unknown algorithm.");
0 commit comments