[GitHub] [santuario-xml-security-java] WillChilds-Klein opened a new pull request, #125: Increase TestUtils RSA key size to 2048-bit

[via GitHub]

WillChilds-Klein opened a new pull request, #125:
URL: https://github.com/apache/santuario-xml-security-java/pull/125

   # Notes
   
   Some JCA providers enforce minimum key sizes for RSA. Under such providers, 
the prior test RSA keys (~250 bits) caused errant failures due to these checks.
   
   Commands run to generate new 2048 bit RSA key:
   
   ```
   $ openssl genrsa -out rsa.pem
   Generating RSA private key, 2048 bit long modulus
   ...
   
   $ openssl rsa -in rsa.pem -noout -modulus | cut -d= -f2 | python -c 'import 
sys; print(int(sys.stdin.read(), 16))'
   
25623882427526707322866322256240741413699766555508113361975182446922418415089438936415989175296088974016615587740736574241342957393002320762010474925830839106425586207448011995748812345401230782267753189386103568502885279593734636842405461656752755702912746172339027034096681889413854955725588164346940842786630738833311668086338812048993406627875818948914819316678433784472883107947150827418112730771165726422295838065290136656204305183681062358941954544617538033203389194497917362344779507907933457930952778285948136508570166989856730778407368193764241294623598058775696847518736534397297112966951721385759730339389
   
   $ openssl rsa -in rsa.pem -text
   ...
   
   $ echo 
'1bf2f1ceb238a151c4b14cfd7d752f08c58432cdf98fef591073aa9d1cd51869a66c5bc7843e610bf37737d657f0cbdbefbb12b67e595b491ebdb9dbd9a9da512db092d31b0ae2a20d74a4f21e1d80d97e7ce81ff9fdfd780f531a246d2723aad2317b2ed683a11a43e4ce51225ea4b1352061f2174d11f76bb281331cd8d0574a0c8da25b346a3bc8e5073bbbc8a09882a2212688d5f542a11080eb6560fb013281d802a0e7d9c5937100134fc1d2f4985e7d561451ed34b21fef9fb39724d2256e9975751672e1241473cdd052a6b8e8f584404abd262ecebcc9a1513a1a04a1ebbdb0ba0bd8b9fc1bc573ee0178dbb239e618441c9bbeaa70fbc71d5c4001'
 | python -c 'import sys; print(int(sys.stdin.read(), 
16))'3528234661733082180776442193574872980411472807679710926323512617315835387304379159287393172068784150960921907682262032835709276401337457353195637971385591224749141552649814002008594879303305103669441762378811947482643953233346985105602436577666613782490572065538358178672939825900951021872647627982159607020517494035808696000711764612928507262119202126863967982149512266656979649854828368946729091888471713686050609
 
236660803230783779358341620231090291260341354329267023477206244292304622212026424326791744469389564408227691436807395676615403132438757121377972296526283759417146522152664932814217676090967196165750785
   ```
   
   # Testing
   
   - ran unit tests with [ACCP 
2.0](https://github.com/corretto/amazon-corretto-crypto-provider/) installed at 
highest priority -- failed before the change and passed after.
   - this repo's CI checks


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: dev-unsubscr...@santuario.apache.org

For queries about this service, please contact Infrastructure at:
us...@infra.apache.org