diff options
| author | Bart de Water <496367+bdewater@users.noreply.github.com> | 2022-10-08 07:53:57 -0400 |
|---|---|---|
| committer | Bart de Water <496367+bdewater@users.noreply.github.com> | 2022-10-08 07:53:57 -0400 |
| commit | fd5eaa6dfc9e70875505cbe89a854223e7922776 (patch) | |
| tree | 6801ef59170474fdcfa927bf48127801c7ba1a3c | |
| parent | 173be6690589120976bd3f8e55eea13eae6aed46 (diff) | |
| download | ruby-openssl-fd5eaa6dfc9e70875505cbe89a854223e7922776.tar.gz | |
Call out insecure PKCS #1 v1.5 default padding for RSA
| -rw-r--r-- | lib/openssl/pkey.rb | 12 |
1 files changed, 8 insertions, 4 deletions
diff --git a/lib/openssl/pkey.rb b/lib/openssl/pkey.rb index d51f066b..0414658a 100644 --- a/lib/openssl/pkey.rb +++ b/lib/openssl/pkey.rb @@ -363,7 +363,8 @@ module OpenSSL::PKey # rsa.private_encrypt(string, padding) -> String # # Encrypt +string+ with the private key. +padding+ defaults to - # PKCS1_PADDING. The encrypted string output can be decrypted using + # PKCS1_PADDING, which is known to be insecure but is kept for backwards + # compatibility. The encrypted string output can be decrypted using # #public_decrypt. # # <b>Deprecated in version 3.0</b>. @@ -386,7 +387,8 @@ module OpenSSL::PKey # rsa.public_decrypt(string, padding) -> String # # Decrypt +string+, which has been encrypted with the private key, with the - # public key. +padding+ defaults to PKCS1_PADDING. + # public key. +padding+ defaults to PKCS1_PADDING which is known to be + # insecure but is kept for backwards compatibility. # # <b>Deprecated in version 3.0</b>. # Consider using PKey::PKey#sign_raw and PKey::PKey#verify_raw, and @@ -407,7 +409,8 @@ module OpenSSL::PKey # rsa.public_encrypt(string, padding) -> String # # Encrypt +string+ with the public key. +padding+ defaults to - # PKCS1_PADDING. The encrypted string output can be decrypted using + # PKCS1_PADDING, which is known to be insecure but is kept for backwards + # compatibility. The encrypted string output can be decrypted using # #private_decrypt. # # <b>Deprecated in version 3.0</b>. @@ -428,7 +431,8 @@ module OpenSSL::PKey # rsa.private_decrypt(string, padding) -> String # # Decrypt +string+, which has been encrypted with the public key, with the - # private key. +padding+ defaults to PKCS1_PADDING. + # private key. +padding+ defaults to PKCS1_PADDING, which is known to be + # insecure but is kept for backwards compatibility. # # <b>Deprecated in version 3.0</b>. # Consider using PKey::PKey#encrypt and PKey::PKey#decrypt instead. |