add check for minimum key size, add negative test

n1ckl0sk0rtge · Mar 18, 2022 · 1e20740 · 1e20740
1 parent e1d2ada
commit 1e20740
Show file tree

Hide file tree

Showing 3 changed files with 5 additions and 2 deletions.
diff --git a/build/classes/java/test/PseudonymTest.class b/build/classes/java/test/PseudonymTest.class
diff --git a/build/tmp/compileTestJava/previous-compilation-data.bin b/build/tmp/compileTestJava/previous-compilation-data.bin
diff --git a/src/main/java/com/ibm/unlinkablepseudonyms/Pseudonym.java b/src/main/java/com/ibm/unlinkablepseudonyms/Pseudonym.java
@@ -1,7 +1,6 @@
 package com.ibm.unlinkablepseudonyms;
 
 import org.apache.commons.codec.digest.DigestUtils;
-
 import java.math.BigInteger;
 import java.security.interfaces.RSAPrivateCrtKey;
 import java.security.interfaces.RSAPublicKey;
@@ -23,7 +22,11 @@ public static byte[] convert(
             byte[] cipher,
             PRFSecretExponent currentSecretExponent,
             PRFSecretExponent targetSecretExponent,
-            RSAPrivateCrtKey privateKey) {
+            RSAPrivateCrtKey privateKey) throws Exception {
+
+        if (privateKey.getModulus().bitLength() <= 256) {
+            throw new Exception("key size to small");
+        }
 
         BigInteger phi = privateKey.getPrimeP().subtract(BigInteger.ONE).multiply(privateKey.getPrimeQ().subtract(BigInteger.ONE));
         BigInteger value = (new BigInteger(cipher)).modPow(targetSecretExponent.asBigInt(), privateKey.getModulus());