New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
crypto/rsa: check RSA private/public key size before using it #66918
base: master
Are you sure you want to change the base?
Conversation
Thanks for your pull request! It looks like this may be your first contribution to a Google open source project. Before we can look at your pull request, you'll need to sign a Contributor License Agreement (CLA). View this failed invocation of the CLA check for more information. For the most up to date status, view the checks section at the bottom of the pull request. |
This PR (HEAD: d6c9c67) has been imported to Gerrit for code review. Please visit Gerrit at https://go-review.googlesource.com/c/go/+/580078. Important tips:
|
Message from Gopher Robot: Patch Set 1: (1 comment) Please don’t reply on this GitHub thread. Visit golang.org/cl/580078. |
Message from Gopher Robot: Patch Set 1: Congratulations on opening your first change. Thank you for your contribution! Next steps: Most changes in the Go project go through a few rounds of revision. This can be During May-July and Nov-Jan the Go project is in a code freeze, during which Please don’t reply on this GitHub thread. Visit golang.org/cl/580078. |
This PR (HEAD: 78a81ad) has been imported to Gerrit for code review. Please visit Gerrit at https://go-review.googlesource.com/c/go/+/580078. Important tips:
|
This PR (HEAD: 4819097) has been imported to Gerrit for code review. Please visit Gerrit at https://go-review.googlesource.com/c/go/+/580078. Important tips:
|
Message from Xin Zhang: Patch Set 10: (1 comment) Please don’t reply on this GitHub thread. Visit golang.org/cl/580078. |
Hi All,
The issue this PR tries to solve is that when private/public key size is zero, and use the private key to sign a token or public key to verify, it returns an error:
crypto/rsa: message too long for RSA key size
, which does not reflect the root cause.The solution in the PR is to check the private/public key size before using the private/public key, and returns the error
crypto/rsa: private/public key size zero
if the private/public key size is zero to have a better error information and help to investigate.