python-rsa icon indicating copy to clipboard operation
python-rsa copied to clipboard

Published 20 hours ago verified publisher icon sybrenstuvel

Add range checks to `decrypt_int` and `decrypt_int_fast`

Open myheroyuki opened this issue 1 year ago • 0 comments

According to RFC 8017: PKCS#1 v2.2, all cryptographic primitives should be performing range checks on their inputs. Specifically, section 5.1.2. says for RSADP

If the ciphertext representative c is not between 0 and n - 1, output "ciphertext representative out of range" and stop

and section 5.2.1. says for RSASP1

If the message representative m is not between 0 and n - 1, output "message representative out of range" and stop.

These two functions are the same and correspond to decrypt_int/decrypt_int_fast in Python-RSA. These functions should be updated since they do not have the necessary range checks. This would result in a minor API change because the user would have to consider handling new possible exceptions.

See #234 for more context.

myheroyuki avatar Feb 01 '24 13:02 myheroyuki