[PATCH] gpg: Actually allow generation of 8192-bit rsa keys

Werner Koch wk at gnupg.org
Tue Jan 24 21:04:27 CET 2017


On Tue, 24 Jan 2017 17:45, aranea at aixah.de said:
> Currently, get_keysize_range() returns 4096 as an upper bound for the
> size of RSA keys even if the option --enable-large-rsa is in use.
> Therefore, interactive generation of 8192-bit RSA keys is currently

Right, that is by design.  Read
<https://www.gnupg.org/faq/gnupg-faq.html#no_default_of_rsa4096> to read
why we even don't default to 4096.

If you somehow have a demand for RSA > 4096 bit you will also have the
experts at hand which can figure out how to create such keys with GnuPG
and how are able to implement the OPSEC which you surely need with such
demands.


Shalom-Salam,

   Werner

-- 
Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 227 bytes
Desc: not available
URL: </pipermail/attachments/20170124/16ed9953/attachment.sig>


More information about the Gnupg-devel mailing list