]> git.ipfire.org Git - thirdparty/openssl.git/commit
projects / thirdparty / openssl.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 496bc12) | patch
Check range of RSA plaintext and ciphertext when using no padding.
authorslontis <shane.lontis@oracle.com>
Mon, 8 Apr 2024 07:12:58 +0000 (17:12 +1000)
committerTomas Mraz <tomas@openssl.org>
Tue, 9 Apr 2024 12:30:43 +0000 (14:30 +0200)
commit4514e02cdfc96589d5e8ab0a08942fafa8e418ae
treee0ba7cc7dc0f0a83aa4397e300f0bfec5fc5772etree | snapshot
parent496bc128fdc994388c8ec956c4b5ebcb90459ae0commit | diff
Check range of RSA plaintext and ciphertext when using no padding.

Fixes #24051

RSA with 'no padding' corresponds to RSAEP/RSADP.
The code was not checking the lower bounds.
The bounds are specified in SP800-56Br2, section 7.1.1.1 and 7.1.2.1
Note that RFC8017 expresses the range in a sentence using the word
between, and there is some ambiguity in this.
The upper bounds have change to match the definition in SP800.

Reviewed-by: Paul Dale <ppzgs1@gmail.com>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/24061)
crypto/rsa/rsa_ossl.c diff | blob | blame | history
test/recipes/30-test_evp_data/evppkey_rsa_common.txt diff | blob | blame | history
A mirror of the official openssl repository