Skip to content

Commit

Permalink
Increase the default token key size
Browse files Browse the repository at this point in the history 
The previous default token key size would fail in FIPS mode for the sha384
and sha512 algorithms. With the updated key size, the default will work in
all cases.

https://pagure.io/freeipa/issue/7168

Reviewed-By: Rob Crittenden <rcritten@redhat.com>
  • Loading branch information
@npmccallum @rcritten
npmccallum authored and rcritten committed Mar 13, 2018
1 parent 4e7013b commit 00044ac
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion ipaserver/plugins/otptoken.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -72,7 +72,7 @@
}

# NOTE: For maximum compatibility, KEY_LENGTH % 5 == 0
KEY_LENGTH = 20
KEY_LENGTH = 35

class OTPTokenKey(Bytes):
"""A binary password type specified in base32."""
Expand Down

0 comments on commit 00044ac

Please sign in to comment.