)]}' { "commit": "a54ebffa76def47babe00afa41cec27349b698d0", "tree": "7e9ad45ca59100b4d941f218cad2d1218205c85c", "parents": [ "4b65693c7ed663a540bc7a53680c1269e8f4c7e0" ], "author": { "name": "Adam Langley", "email": "agl@google.com", "time": "Thu Apr 20 12:36:18 2017 -0700" }, "committer": { "name": "CQ bot account: commit-bot@chromium.org", "email": "commit-bot@chromium.org", "time": "Thu Apr 20 20:43:52 2017 +0000" }, "message": "Fix lower bound in e in FIPS RSA checking.\n\nSP 800-89 5.3.3 references FIPS 186 for the bounds on e. I /think/\nthat\u0027s section B.3.1 which says:\n\n (b) The exponent e shall be an odd positive integer such that 2¹⁶ \u003c e \u003c 2²⁵⁶.\n\nBut that means that e has to be at least 17 bits. The check for\nBN_is_odd ensures that 2¹⁶ itself is rejected.\n\nChange-Id: Ib39f9d43032cbfe33317651c7b6eceb41b123291\nReviewed-on: https://boringssl-review.googlesource.com/15324\nReviewed-by: Steven Valdez \u003csvaldez@google.com\u003e\nReviewed-by: David Benjamin \u003cdavidben@google.com\u003e\nCommit-Queue: David Benjamin \u003cdavidben@google.com\u003e\nCQ-Verified: CQ bot account: commit-bot@chromium.org \u003ccommit-bot@chromium.org\u003e\n", "tree_diff": [ { "type": "modify", "old_id": "1b62d03b52df3c6ce237286b77064b8334bc37ab", "old_mode": 33188, "old_path": "crypto/rsa/rsa.c", "new_id": "cc4aa75f3a37ee913c03dddd791f35b7f672bd76", "new_mode": 33188, "new_path": "crypto/rsa/rsa.c" } ] }