Branch: refs/heads/stable1-proposed Home: https://github.com/kronosnet/kronosnet Commit: 4e648f76930af8c376a833677d940b2b0efc3c86 https://github.com/kronosnet/kronosnet/commit/4e648f76930af8c376a833677d940b... Author: Fabian Grünbichler f.gruenbichler@proxmox.com Date: 2019-04-09 (Tue, 09 Apr 2019)
Changed paths: M libknet/libknet.h
Log Message: ----------- reduce minimum crypto key size to 1024bit
Since the key is used for AES/3DES and HMAC operations only, this is safe. AES/3DES use keys in the 128- to 256-bit range, HMAC with MD5/SHA1/SHA2 should use keys with a minimum of 128- to 512-bit (in both cases, depending on the actual algorithm used).
This reduction also keeps knet compatible with existing Corosync 2.x keyfiles, which are 1024-bit.
Signed-off-by: Fabian Grünbichler f.gruenbichler@proxmox.com
-
Fabian-Gruenbichler