diff options
| author | Alex Gaynor <alex.gaynor@gmail.com> | 2020-10-27 22:12:50 -0400 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2020-10-27 19:12:50 -0700 |
| commit | 0c7592c34fd58f0634f493d6ce542ab35d940b26 (patch) | |
| tree | f371c54a8d0d5a6103a63f6d60524b82309f7c90 | |
| parent | c9e65222c91df8b6f61650a3460e30232962c1e0 (diff) | |
| download | cryptography-3.2.x.tar.gz | |
* Disable blinding for RSA pub keys (#5524)
* Bump to 3.2.1
| -rw-r--r-- | CHANGELOG.rst | 8 | ||||
| -rw-r--r-- | src/cryptography/__about__.py | 4 | ||||
| -rw-r--r-- | src/cryptography/hazmat/backends/openssl/rsa.py | 5 | ||||
| -rw-r--r-- | tests/hazmat/primitives/test_rsa.py | 3 | ||||
| -rw-r--r-- | vectors/cryptography_vectors/__about__.py | 4 |
5 files changed, 15 insertions, 9 deletions
diff --git a/CHANGELOG.rst b/CHANGELOG.rst index 007f80200..5920fd37b 100644 --- a/CHANGELOG.rst +++ b/CHANGELOG.rst @@ -1,6 +1,14 @@ Changelog ========= +.. _v3-2-1: + +3.2.1 - 2020-10-27 +~~~~~~~~~~~~~~~~~~ + +* Disable blinding on RSA public keys to address an error with some versions + of OpenSSL. + .. _v3-2: 3.2 - 2020-10-25 diff --git a/src/cryptography/__about__.py b/src/cryptography/__about__.py index b960f7ed1..1c9e51108 100644 --- a/src/cryptography/__about__.py +++ b/src/cryptography/__about__.py @@ -22,10 +22,10 @@ __summary__ = ( ) __uri__ = "https://github.com/pyca/cryptography" -__version__ = "3.2" +__version__ = "3.2.1" __author__ = "The cryptography developers" __email__ = "cryptography-dev@python.org" __license__ = "BSD or Apache License, Version 2.0" -__copyright__ = "Copyright 2013-2019 {}".format(__author__) +__copyright__ = "Copyright 2013-2020 {}".format(__author__) diff --git a/src/cryptography/hazmat/backends/openssl/rsa.py b/src/cryptography/hazmat/backends/openssl/rsa.py index 66b37224e..de299779d 100644 --- a/src/cryptography/hazmat/backends/openssl/rsa.py +++ b/src/cryptography/hazmat/backends/openssl/rsa.py @@ -410,11 +410,6 @@ class _RSAPrivateKey(object): @utils.register_interface(RSAPublicKeyWithSerialization) class _RSAPublicKey(object): def __init__(self, backend, rsa_cdata, evp_pkey): - # Blinding is on by default in many versions of OpenSSL, but let's - # just be conservative here. - res = backend._lib.RSA_blinding_on(rsa_cdata, backend._ffi.NULL) - backend.openssl_assert(res == 1) - self._backend = backend self._rsa_cdata = rsa_cdata self._evp_pkey = evp_pkey diff --git a/tests/hazmat/primitives/test_rsa.py b/tests/hazmat/primitives/test_rsa.py index d7fa7744f..1a770d3ef 100644 --- a/tests/hazmat/primitives/test_rsa.py +++ b/tests/hazmat/primitives/test_rsa.py @@ -1894,6 +1894,9 @@ class TestRSANumbers(object): public_key = RSA_KEY_1024.public_numbers.public_key(backend) assert public_key + public_key = rsa.RSAPublicNumbers(n=10, e=3).public_key(backend) + assert public_key + def test_public_numbers_invalid_types(self): with pytest.raises(TypeError): rsa.RSAPublicNumbers(e=None, n=15) diff --git a/vectors/cryptography_vectors/__about__.py b/vectors/cryptography_vectors/__about__.py index 3b41b82e0..a946111d8 100644 --- a/vectors/cryptography_vectors/__about__.py +++ b/vectors/cryptography_vectors/__about__.py @@ -20,10 +20,10 @@ __summary__ = "Test vectors for the cryptography package." __uri__ = "https://github.com/pyca/cryptography" -__version__ = "3.2" +__version__ = "3.2.1" __author__ = "The cryptography developers" __email__ = "cryptography-dev@python.org" __license__ = "BSD or Apache License, Version 2.0" -__copyright__ = "Copyright 2013-2019 %s" % __author__ +__copyright__ = "Copyright 2013-2020 %s" % __author__ |