Skip to content

Commit 50be543

Browse files
luchua-bcluchua-bc
committed
Update qldoc
1 parent ab7d257 commit 50be543

File tree

2 files changed

+3
-3
lines changed

2 files changed

+3
-3
lines changed

java/ql/src/experimental/Security/CWE/CWE-326/InsufficientKeySize.java

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -25,12 +25,12 @@ public void CryptoMethod() {
2525
keyPairGen4.initialize(2048);
2626

2727
KeyPairGenerator keyPairGen5 = KeyPairGenerator.getInstance("EC");
28-
// BAD: Key size is less than 224
28+
// BAD: Key size is less than 256
2929
ECGenParameterSpec ecSpec1 = new ECGenParameterSpec("secp112r1");
3030
keyPairGen5.initialize(ecSpec1);
3131

3232
KeyPairGenerator keyPairGen6 = KeyPairGenerator.getInstance("EC");
33-
// GOOD: Key size is no less than 224
33+
// GOOD: Key size is no less than 256
3434
ECGenParameterSpec ecSpec2 = new ECGenParameterSpec("secp256r1");
3535
keyPairGen6.initialize(ecSpec2);
3636
}

java/ql/src/semmle/code/java/security/Encryption.qll

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -315,7 +315,7 @@ class JavaSecuritySignature extends JavaSecurityAlgoSpec {
315315
override Expr getAlgoSpec() { result = this.(ConstructorCall).getArgument(0) }
316316
}
317317

318-
/** Method call to the Java class `java.security.KeyPairGenerator`. */
318+
/** A method call to the Java class `java.security.KeyPairGenerator`. */
319319
class JavaSecurityKeyPairGenerator extends JavaxCryptoAlgoSpec {
320320
JavaSecurityKeyPairGenerator() {
321321
exists(Method m | m.getAReference() = this |

0 commit comments

Comments
 (0)