lib/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-08-08 17:42:09 +03:00
Code Activity

Merge pull request #7864 from waleed-elmelegy-arm/enforce-min-RSA-key-size

Browse Source 
Enforce minimum key size when generating RSA key size
This commit is contained in:
Dave Rodgman
2023-08-03 12:57:52 +00:00
committed by GitHub
parent 1d4d944e19 d4e7fe09b3
commit 6f80ac4979
11 changed files with 91 additions and 48 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
include/psa/crypto_sizes.h
View File

@@ -208,6 +208,18 @@
* operations, and does not need to accept all key sizes up to the limit. */
#define PSA_VENDOR_RSA_MAX_KEY_BITS 4096
/* The minimum size of an RSA key on this implementation, in bits.
* This is a vendor-specific macro.
*
* Limits RSA key generation to a minimum due to avoid accidental misuse.
* This value cannot be less than 128 bits.
*/
#if defined(MBEDTLS_RSA_GEN_KEY_MIN_BITS)
#define PSA_VENDOR_RSA_GENERATE_MIN_KEY_BITS MBEDTLS_RSA_GEN_KEY_MIN_BITS
#else
#define PSA_VENDOR_RSA_GENERATE_MIN_KEY_BITS 1024
#endif
/* The maximum size of an DH key on this implementation, in bits.
*
* Note that an implementation may set different size limits for different