lib/mbedtls
1
0
Fork 0
mirror of https://github.com/Mbed-TLS/mbedtls.git synced 2025-08-01 10:06:53 +03:00
Code Activity

Enforce minimum key size when generating RSA key size

Browse Source 
Add configuration to enforce minimum size when
generating a RSA key, it's default value is 1024
bits since this the minimum secure value currently
but it can be any value greater than or equal 128
bits. Tests were modifed to accommodate for this
change.

Signed-off-by: Waleed Elmelegy <waleed.elmelegy@arm.com>
This commit is contained in:
Waleed Elmelegy
2023-06-30 16:48:19 +01:00
parent 51ed3139d1
commit 76336c3e4d
6 changed files with 40 additions and 19 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
library/rsa.c
View File

@ -550,6 +550,11 @@ int mbedtls_rsa_gen_key(mbedtls_rsa_context *ctx,
goto cleanup;
}
if (nbits < MBEDTLS_RSA_MIN_KEY_SIZE) {
ret = MBEDTLS_ERR_RSA_BAD_INPUT_DATA;
goto cleanup;
}
/*
* find primes P and Q with Q < P so that:
* 1. |P-Q| > 2^( nbits / 2 - 100 )