[openssl/openssl] 4514e0: Check range of RSA plaintext and ciphertext when u...
Shane
noreply at github.com
Tue Apr 9 12:32:57 UTC 2024
Branch: refs/heads/master
Home: https://github.com/openssl/openssl
Commit: 4514e02cdfc96589d5e8ab0a08942fafa8e418ae
https://github.com/openssl/openssl/commit/4514e02cdfc96589d5e8ab0a08942fafa8e418ae
Author: slontis <shane.lontis at oracle.com>
Date: 2024-04-09 (Tue, 09 Apr 2024)
Changed paths:
M crypto/rsa/rsa_ossl.c
M test/recipes/30-test_evp_data/evppkey_rsa_common.txt
Log Message:
-----------
Check range of RSA plaintext and ciphertext when using no padding.
Fixes #24051
RSA with 'no padding' corresponds to RSAEP/RSADP.
The code was not checking the lower bounds.
The bounds are specified in SP800-56Br2, section 7.1.1.1 and 7.1.2.1
Note that RFC8017 expresses the range in a sentence using the word
between, and there is some ambiguity in this.
The upper bounds have change to match the definition in SP800.
Reviewed-by: Paul Dale <ppzgs1 at gmail.com>
Reviewed-by: Tomas Mraz <tomas at openssl.org>
(Merged from https://github.com/openssl/openssl/pull/24061)
To unsubscribe from these emails, change your notification settings at https://github.com/openssl/openssl/settings/notifications
More information about the openssl-commits
mailing list