Bug in iqmp calculation #62

angelakis · 2020-08-28T14:13:41Z

There's a bug/typo in iqmp calculation. The parameters in the method below should be p, q instead of p, p:

JWTConnect-Python-CryptoJWT/src/cryptojwt/jwk/rsa.py

Line 175 in 0569939

cnum["iqmp"] = rsa.rsa_crt_iqmp(cnum["p"], cnum["p"])

(Also 2 lines below.)

AFAIK Cryptography < 3.1.0 and the underlying libraries/bindings were correcting this error but after version 3.1.0 the checks became stricter and the key is rejected:

'Invalid private key', [_OpenSSLErrorWithText(code=67764350, lib=4, func=160, reason=126, reason_text=b'error:040A007E:rsa routines:RSA_check_key_ex:iqmp not inv
erse of q')]

The text was updated successfully, but these errors were encountered:

closes #62

jschlyter · 2020-08-28T14:25:58Z

Good catch! I've fixed this in #61, waiting for review by @rohe. I suggest we do a new release once this is fixed.

angelakis mentioned this issue Aug 28, 2020

RSA import fail #60

Closed

jschlyter added a commit that referenced this issue Aug 28, 2020

Fix bad iqmp calculation

dbbe46d

closes #62

jschlyter mentioned this issue Aug 28, 2020

Work around bad RSAKey import #61

Merged

jschlyter self-assigned this Aug 28, 2020

jschlyter added the bug label Aug 28, 2020

jschlyter linked a pull request Aug 28, 2020 that will close this issue

Work around bad RSAKey import #61

Merged

jschlyter closed this as completed in #61 Aug 28, 2020

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bug in iqmp calculation #62

Bug in iqmp calculation #62

angelakis commented Aug 28, 2020

jschlyter commented Aug 28, 2020

Bug in iqmp calculation #62

Bug in iqmp calculation #62

Comments

angelakis commented Aug 28, 2020

jschlyter commented Aug 28, 2020