Received: by 2002:a05:6358:3188:b0:123:57c1:9b43 with SMTP id q8csp2580492rwd; Wed, 14 Jun 2023 05:02:55 -0700 (PDT) X-Google-Smtp-Source: ACHHUZ6hX+QuxGyvpZxMqUiZjsNYqGjgoQqdfAcjKlu2LUdRRIBVMQarD+i/XyBo3BBEAMO304Bn X-Received: by 2002:a17:906:648d:b0:982:8b1e:88dc with SMTP id e13-20020a170906648d00b009828b1e88dcmr155084ejm.4.1686744174822; Wed, 14 Jun 2023 05:02:54 -0700 (PDT) ARC-Seal: i=2; a=rsa-sha256; t=1686744174; cv=pass; d=google.com; s=arc-20160816; b=TqCmGBorS5K33Fz3+ZiV9dqodk6sBWkT5xRxox73xk48mnyYtCFhOQe3y0UCFTfSAN T9KhjlrDPYCXbOOW2Z3YWdJdUPB18av03fIsHyWO0ONeS7r/E1N+GO+0DLhZWBU2bErZ 0+SdKPwdmGRyzUw5ATWwM28cXF/2z58Qdr4FqUd8JxE7iK/cLvNHwMrr9dJqniqxKjXo sVMWmD/ywBOZm+xznWFWolQqAO7a5ZU9hg3BPASfICHlQaZDAkD7pAcnY068GOn406Jc P5aiBjktov+c0ZTKo7gqz4xKQrjKms8ndQwjc1F3fockWVUHUbA1yfpfUzkpW81xWhXD EesA== ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=list-id:precedence:content-transfer-encoding:mime-version :references:in-reply-to:message-id:date:subject:cc:to:from :dkim-signature:dkim-signature; bh=vMoc5VyH6n3kW4KHnsgIvyCuToj2ccHvrt1ZTeOdzfY=; b=OqjKwV0+T4F8ZEvVFtLlgEdbYZUqiSziw28poYkdD+RU/9C2icFQlb50pguST/cfSg wP12eQ+eazPMyjRYghgtJJ1ANCmJYOGEtW0mkHWhY/k+BWPDTKJuQdKKvM3N6yPmNt7E 9g4zbPdioUSXxZ5kxAoU01xE88TILkBnk2a4U3OJyNDS4zFLNYyKosFUKqtVNaglcOmI 1Cv3nNS/50Xy6XyrTiOVIxy8xu4MeKQAtluqGAdDCLC06a9c0JGEdVA4z+DGvx23pcBm Bo6pYVs1EvPlPy9+lgLCyDfBTZmUALa0XV/KO5nQkvkRxSQa7Q+WH4nvBxzL45+W8+3B JJww== ARC-Authentication-Results: i=2; mx.google.com; dkim=pass header.i=@chronox.de header.s=strato-dkim-0002 header.b=RKMZO3Fa; dkim=neutral (no key) header.i=@chronox.de; arc=pass (i=1); spf=pass (google.com: domain of linux-crypto-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-crypto-owner@vger.kernel.org Return-Path: Received: from out1.vger.email (out1.vger.email. [2620:137:e000::1:20]) by mx.google.com with ESMTP id z15-20020a170906434f00b0098275dc5c00si537044ejm.533.2023.06.14.05.02.22; Wed, 14 Jun 2023 05:02:54 -0700 (PDT) Received-SPF: pass (google.com: domain of linux-crypto-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) client-ip=2620:137:e000::1:20; Authentication-Results: mx.google.com; dkim=pass header.i=@chronox.de header.s=strato-dkim-0002 header.b=RKMZO3Fa; dkim=neutral (no key) header.i=@chronox.de; arc=pass (i=1); spf=pass (google.com: domain of linux-crypto-owner@vger.kernel.org designates 2620:137:e000::1:20 as permitted sender) smtp.mailfrom=linux-crypto-owner@vger.kernel.org Received: (majordomo@vger.kernel.org) by vger.kernel.org via listexpand id S244402AbjFNMAG (ORCPT + 99 others); Wed, 14 Jun 2023 08:00:06 -0400 Received: from lindbergh.monkeyblade.net ([23.128.96.19]:38934 "EHLO lindbergh.monkeyblade.net" rhost-flags-OK-OK-OK-OK) by vger.kernel.org with ESMTP id S243823AbjFNL7a (ORCPT ); Wed, 14 Jun 2023 07:59:30 -0400 Received: from mo4-p00-ob.smtp.rzone.de (mo4-p00-ob.smtp.rzone.de [85.215.255.24]) by lindbergh.monkeyblade.net (Postfix) with ESMTPS id 0C7E21BFA for ; Wed, 14 Jun 2023 04:59:27 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1686743964; cv=none; d=strato.com; s=strato-dkim-0002; b=HkDbnRCmoXRWNIKLy1ufRJJHJ8S8GbSncnuei3xZ5vg9XOnDYJLevzzXaPvZvClNk/ +CeJfyay1LPc78vCc7yvGwKnIZ+mcMTLwiVaiDKPoKZVD0udhaaf1q4H8RzgUeLEEOwk AS/upRFkKFSr/55+tY0YTHPCvgHmEP3vNoTAQBFz63xCHdYFB41JVcKx5AZJqagbAd7F JCGW/ocgyOu3X9K4v1SaW6kGmRn/RMUlXdgdjWWDg21yalsqKYzAIZ8StGncZLV+6tU2 8xvmYO/DtTyh/pgcFA3ZyzVrYxgRTEwCMqV5EzkcDgFecRB5wX3qJHEuqgNP8tvMLxNd zQ/g== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; t=1686743964; s=strato-dkim-0002; d=strato.com; h=References:In-Reply-To:Message-ID:Date:Subject:Cc:To:From:Cc:Date: From:Subject:Sender; bh=vMoc5VyH6n3kW4KHnsgIvyCuToj2ccHvrt1ZTeOdzfY=; b=KL94Es3IlnwhXkEbHGWsdDldB+UzENsYx3vZlZKJwdCTkHY86u/8u8Dp8JCzSKr8Go UWCZokMZWhRfRRFu4IPdcsGTDcPgkETvUbNzm9BKdfZqmvs2VFIuEfeO1XMGypGgFXAe SBW9oMne8QP0KyniV+3GA5Tx70FUq74drMyTGQMKK1l/PGuZUPPrSjW7egV/xXL/a7OL 8FZZmscKmEW27457FD0jXeTgXyONZPotDWYqi2dk94UcNemFrroFXiSpd7WwNeS5uY+Z m9nVz/DLyrSW8cDGpiF+wLNw83WYsc8IgKlqowVjHb3aAXzWGPcERSBZfwO3t/RVzFXo 5ZIQ== ARC-Authentication-Results: i=1; strato.com; arc=none; dkim=none X-RZG-CLASS-ID: mo00 DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; t=1686743964; s=strato-dkim-0002; d=chronox.de; h=References:In-Reply-To:Message-ID:Date:Subject:Cc:To:From:Cc:Date: From:Subject:Sender; bh=vMoc5VyH6n3kW4KHnsgIvyCuToj2ccHvrt1ZTeOdzfY=; b=RKMZO3FaYpNAQ6A8OqoTKstrmE5MsvwauNT3avcPv1CsJS3jb8iaTrnznpDISj0R/P 5nSaiHkUy5TiMmnsckF9RAtYFkcN0CxvXqabinJj9W7zbtmYXMmdOcexERGyokWt09E7 MkcAv+cUcUGKzAO06q7k1yl4zslVIYNi2Q+vVy1ulEQFM4TcPyTLPOqG5mV+J5Q4kOpo 2kXFNb84Dyye0KAEtgqe1d1AJIFn4ll0IWjEwcHtPkTAyFHk4UDjiHCqGb+OXHDCY1lu 6O5/TeWuprTK2dazytJz2t0FI5SfsclGrE1e5/y0QkBVp6OcaxW9t15SaNAS6tbX6lMA oIGg== DKIM-Signature: v=1; a=ed25519-sha256; c=relaxed/relaxed; t=1686743964; s=strato-dkim-0003; d=chronox.de; h=References:In-Reply-To:Message-ID:Date:Subject:Cc:To:From:Cc:Date: From:Subject:Sender; bh=vMoc5VyH6n3kW4KHnsgIvyCuToj2ccHvrt1ZTeOdzfY=; b=yPJPMBEmSSaPLxIkjJNDt5qzpzC3ic8YZ4opGjYYUjlpxJwFg1PVfYv7A24JTpY6pW vLalZ2mckqYGmKikLiCA== X-RZG-AUTH: ":P2ERcEykfu11Y98lp/T7+hdri+uKZK8TKWEqNyiHySGSa9k9y2gdNk2TvDz0d0iwLwE=" Received: from tauon.chronox.de by smtp.strato.de (RZmta 49.5.3 AUTH) with ESMTPSA id qe6984z5EBxN6WH (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256 bits)) (Client did not present a certificate); Wed, 14 Jun 2023 13:59:23 +0200 (CEST) From: Stephan Mueller To: Mahmoud Adam , Herbert Xu Cc: davem@davemloft.net, linux-crypto@vger.kernel.org, linux-kernel@vger.kernel.org Subject: Re: [PATCH] crypto: rsa - allow only odd e and restrict value in FIPS mode Date: Wed, 14 Jun 2023 13:59:23 +0200 Message-ID: <4502349.tsrQG4AIub@tauon.chronox.de> In-Reply-To: References: <20230613161731.74081-1-mngyadam@amazon.com> MIME-Version: 1.0 Content-Transfer-Encoding: 7Bit Content-Type: text/plain; charset="us-ascii" X-Spam-Status: No, score=-2.1 required=5.0 tests=BAYES_00,DKIM_SIGNED, DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,RCVD_IN_DNSWL_NONE, SPF_HELO_PASS,SPF_NONE,T_SCC_BODY_TEXT_LINE,URIBL_BLOCKED autolearn=ham autolearn_force=no version=3.4.6 X-Spam-Checker-Version: SpamAssassin 3.4.6 (2021-04-09) on lindbergh.monkeyblade.net Precedence: bulk List-ID: X-Mailing-List: linux-crypto@vger.kernel.org Am Mittwoch, 14. Juni 2023, 11:50:52 CEST schrieb Herbert Xu: Hi Herbert, > On Tue, Jun 13, 2023 at 04:17:31PM +0000, Mahmoud Adam wrote: > > check if rsa public exponent is odd and check its value is between > > 2^16 < e < 2^256. > > > > FIPS 186-5 DSS (page 35)[1] specify that: > > > > 1. The public exponent e shall be selected with the following constraints: > > (a) The public verification exponent e shall be selected prior to > > generating the primes, p and q, and the private signature exponent > > d. > > > > (b) The exponent e shall be an odd positive integer such that: > > 2^16 < e < 2^256. > > > > [1] https://nvlpubs.nist.gov/nistpubs/FIPS/NIST.FIPS.186-5.pdf > > > > Signed-off-by: Mahmoud Adam Reviewed-by: Stephan Mueller Ciao Stephan