8178466: Better RSA parameters

Reviewed-by: mullan, ahgross
2017-08-31 21:44:19 +00:00 · 2017-08-31 21:44:19 +00:00 · 0e8009535c
commit 0e8009535c
parent c5f521e176
2 changed files with 2 additions and 3 deletions
--- a/src/java.base/share/classes/sun/security/tools/keytool/Main.java
+++ b/src/java.base/share/classes/sun/security/tools/keytool/Main.java
@ -1804,8 +1804,7 @@ public final class Main {
            } else if ("RSA".equalsIgnoreCase(keyAlgName)) {
                keysize = SecurityProviderConstants.DEF_RSA_KEY_SIZE;
            } else if ("DSA".equalsIgnoreCase(keyAlgName)) {
-                // hardcode for now as DEF_DSA_KEY_SIZE is still 1024
-                keysize = 2048; // SecurityProviderConstants.DEF_DSA_KEY_SIZE;
+                keysize = SecurityProviderConstants.DEF_DSA_KEY_SIZE;
            }
        }

--- a/src/java.base/share/classes/sun/security/util/SecurityProviderConstants.java
+++ b/src/java.base/share/classes/sun/security/util/SecurityProviderConstants.java
@ -64,7 +64,7 @@ public final class SecurityProviderConstants {
    static {
        String keyLengthStr = GetPropertyAction.privilegedGetProperty
            (KEY_LENGTH_PROP);
-        int dsaKeySize = 1024;
+        int dsaKeySize = 2048;
        int rsaKeySize = 2048;
        int dhKeySize = 2048;
        int ecKeySize = 256;