On Wed, May 30, 2001 at 01:24:06PM -0700, dnewbold wrote: > I'm pretty new to security, RSA, and OpenSSL. But I have encountered a > weird problem that I hope someone on this list > can explain. I have a demonstrable, repeatable, situation in which I can > encrypt a user data buffer with an RSA public key, > and decrypt it with its "partner" RSA private key, and yet not get the > result back again. I thought that the RSA algorithm was > supposed to work correctly on ANY user data, which it evidently does not. > And I know that the RSA key pair is correct > because: > > 1. They are generatead by the libeay Eric A. Young crypto library > RSA_generate_key routine > 2. When applied to a different user data buffer, they work fine. > > Although its fairly small, I didn't want to attach the code, data, etc. to > an email message that would go out to who knows > how many recipients. However, if you would like to look at the problem, you > can find code and data at: > > http://rtsse.hispeed.com
Sounds like you have the problem of the Message text being greater than the modulus. The PKCS#1 specified padding prevents this from happening, but if you are doing a RAW RSA encrypt/decrypt then you have to check the values. > > Click on the "RSA Enc/Dec Problem" link > > I suggest you unzip it into a separate folder. There is a small readme file > included. It should work out of the box if you have > installed and built openssl-engine-0.9.6a on an NT system. On other > versions of openssl, or on other systems, you may need to > hack it a bit, but even that should (probably) take you no more than 5 > minutes. > > On the other hand, if you already know all about this problem, and can give > me some advice as to what constitutes acceptable / > unacceptable input data for RSA publc encryption and RSA private decryption, > I would very much appreciate that also. I am not > a member of the openssl-users mailing list, so if you could direct your > responses to:[EMAIL PROTECTED], I'd appreciate it. Thanks. > > [EMAIL PROTECTED] > > ______________________________________________________________________ > OpenSSL Project http://www.openssl.org > User Support Mailing List [EMAIL PROTECTED] > Automated List Manager [EMAIL PROTECTED] -- Steven A. Bade AIX E-Commerce/Network Security Cryptographic Strategy and Development Architecture [EMAIL PROTECTED] T/L 678-4799 (512)-838-4799 -- To convert from Hogsheads to Cubic Feet - Multiply by 8.4219 "Two-way communication is necessary to proactively facilitate acceptance and involvement and to get insights about the journey it takes to get where we want" ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
