larabr 3fa778abe2 Add config.rejectCurves and prevent generating keys using blacklisted algorithms (#1395) ... Breaking changes: - throw error on key generation if the requested public key algorithm is included in `config.rejectPublicKeyAlgorithms`; - add `config.rejectCurves` to blacklist a set of ECC curves, to prevent keys using those curves from being generated, or being used to encrypt/decrypt/sign/verify messages. By default, `config.rejectCurves` includes the brainpool curves (`brainpoolP256r1`, `brainpoolP384r1`, `brainpoolP512r1`) and the Bitcoin curve (`secp256k1`). This is because it's unclear whether these curves will be standardised[1], and we prefer to blacklist them already, rather than introduce a breaking change after release. [1] https://gitlab.com/openpgp-wg/rfc4880bis/-/merge_requests/47#note_634199141		2021-08-19 17:58:16 +02:00
..
factory.js	Replace armor option with format in openpgp.encrypt, sign and encryptSessionKey (#1354)	2021-07-19 18:12:42 +02:00
helper.js	Add config.rejectCurves and prevent generating keys using blacklisted algorithms (#1395)	2021-08-19 17:58:16 +02:00
index.js	Export Subkey class (#1381)	2021-07-20 10:54:29 +02:00
key.js	Add config.rejectCurves and prevent generating keys using blacklisted algorithms (#1395)	2021-08-19 17:58:16 +02:00
private_key.js	Lint: enforce single quotes and do not error on class methods without this (#1341)	2021-06-24 22:58:15 +02:00
public_key.js	Lint: enforce single quotes and do not error on class methods without this (#1341)	2021-06-24 22:58:15 +02:00
subkey.js	Remove primaryKey argument from User methods, rename User.sign to User.certify (#1329)	2021-06-15 17:42:00 +02:00
user.js	Support using Key.isPrivate() for type inference, remove Key.isPublic() (#1347)	2021-06-24 19:53:10 +02:00