diff options
author | slontis <shane.lontis@oracle.com> | 2023-01-25 11:06:34 +1000 |
---|---|---|
committer | Tomas Mraz <tomas@openssl.org> | 2023-01-26 11:05:12 +0100 |
commit | 3100e52ebad9b43c241882be294ec18f9fe7f958 (patch) | |
tree | 7926603b52eb122aa2ec75afb2f9d59d5dbbd2df | |
parent | 168972055815b7082deffbe8bbb12286c2d5aa43 (diff) |
Document that the RSA e value is mandatory when importing.
The lab tried doing a RSA decryption primitive using just n (using p, q) and d.
This failed for 2 reasons:
(1) e is required when importing
(2) Internally e is used for blinding.
Note n and e can be calculated using:
n = pq
e = (1/d) mod (p-1)(q-1)
Reviewed-by: Paul Dale <pauli@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/20133)
(cherry picked from commit 6e3b1c81736b1829584e3f40c2d00040fe1aa881)
-rw-r--r-- | doc/man7/EVP_PKEY-RSA.pod | 9 |
1 files changed, 6 insertions, 3 deletions
diff --git a/doc/man7/EVP_PKEY-RSA.pod b/doc/man7/EVP_PKEY-RSA.pod index f102d8e1c0..2abb303857 100644 --- a/doc/man7/EVP_PKEY-RSA.pod +++ b/doc/man7/EVP_PKEY-RSA.pod @@ -23,15 +23,18 @@ supports the following. =item "n" (B<OSSL_PKEY_PARAM_RSA_N>) <unsigned integer> -The RSA "n" value. +The RSA modulus "n" value. =item "e" (B<OSSL_PKEY_PARAM_RSA_E>) <unsigned integer> -The RSA "e" value. +The RSA public exponent "e" value. +This value must always be set when creating a raw key using L<EVP_PKEY_fromdata(3)>. +Note that when a decryption operation is performed, that this value is used for +blinding purposes to prevent timing attacks. =item "d" (B<OSSL_PKEY_PARAM_RSA_D>) <unsigned integer> -The RSA "d" value. +The RSA private exponent "d" value. =item "rsa-factor1" (B<OSSL_PKEY_PARAM_RSA_FACTOR1>) <unsigned integer> |