freeipa/ipapython/secrets
Christian Heimes 4ae4d0d690 Use RSA-OAEP instead of RSA PKCS#1 v1.5
jwcrypto's RSA1-5 (PKCS#1 v1.5) is vulnerable to padding oracle
side-channel attacks. OAEP (PKCS#1 v2.0) is a safe, more modern
alternative.

https://fedorahosted.org/freeipa/ticket/6278

Signed-off-by: Christian Heimes <cheimes@redhat.com>
Reviewed-By: Martin Basti <mbasti@redhat.com>
2016-09-05 18:11:46 +02:00
..
__init__.py Add ipa-custodia service 2015-10-15 14:24:33 +02:00
client.py Use RSA-OAEP instead of RSA PKCS#1 v1.5 2016-09-05 18:11:46 +02:00
common.py Add ipa-custodia service 2015-10-15 14:24:33 +02:00
kem.py Secure permissions of Custodia server.keys 2016-08-24 16:59:43 +02:00
store.py Add custodia store for lightweight CA key replication 2016-06-09 09:04:27 +02:00