Chromium Code Reviews
chromiumcodereview-hr@appspot.gserviceaccount.com (chromiumcodereview-hr) | Please choose your nickname with Settings | Help | Chromium Project | Gerrit Changes | Sign out
(127)

Issues Search
    My Issues | Starred     Open | Closed | All

Issue 329673002: [webcrypto] Restrict public exponent for RSA key generation to 3 or 65537. (Closed)

Created:
6 years, 6 months ago by eroman
Modified:
6 years, 6 months ago
Reviewers:
Ryan Sleevi
CC:
chromium-reviews, darin-cc_chromium.org, jam
Visibility:
Public.

Description

[webcrypto] Restrict public exponent for RSA key generation to 3 or 65537. OpenSSL can hang when given invalid values for the public exponent so do a whitelist validation approach to avoid this. For compatibility reasons the same restriction is applied to the NSS implementation. BUG=381844, 245025 Committed: https://src.chromium.org/viewvc/chrome?view=rev&revision=276658

Patch Set 1 #

Total comments: 2
Unified diffs Side-by-side diffs Delta from patch set Stats (+69 lines, -41 lines) Patch
M content/child/webcrypto/platform_crypto.h View 1 chunk +1 line, -1 line 0 comments Download
M content/child/webcrypto/platform_crypto_nss.cc View 3 chunks +2 lines, -32 lines 0 comments Download
M content/child/webcrypto/platform_crypto_openssl.cc View 1 chunk +1 line, -1 line 0 comments Download
M content/child/webcrypto/shared_crypto.cc View 2 chunks +30 lines, -3 lines 2 comments Download
M content/child/webcrypto/shared_crypto_unittest.cc View 1 chunk +32 lines, -0 lines 0 comments Download
M content/child/webcrypto/status.h View 1 chunk +2 lines, -3 lines 0 comments Download
M content/child/webcrypto/status.cc View 1 chunk +1 line, -1 line 0 comments Download

Messages

Total messages: 16 (0 generated)
eroman
6 years, 6 months ago (2014-06-10 22:36:55 UTC) #1
Ryan Sleevi
LGTM % bug. https://codereview.chromium.org/329673002/diff/1/content/child/webcrypto/shared_crypto.cc File content/child/webcrypto/shared_crypto.cc (right): https://codereview.chromium.org/329673002/diff/1/content/child/webcrypto/shared_crypto.cc#newcode610 content/child/webcrypto/shared_crypto.cc:610: // mean value 0? See https://www.w3.org/Bugs/Public/show_bug.cgi?id=23655 ...
6 years, 6 months ago (2014-06-10 23:46:44 UTC) #2
eroman
https://codereview.chromium.org/329673002/diff/1/content/child/webcrypto/shared_crypto.cc File content/child/webcrypto/shared_crypto.cc (right): https://codereview.chromium.org/329673002/diff/1/content/child/webcrypto/shared_crypto.cc#newcode610 content/child/webcrypto/shared_crypto.cc:610: // mean value 0? See https://www.w3.org/Bugs/Public/show_bug.cgi?id=23655 On 2014/06/10 23:46:44, ...
6 years, 6 months ago (2014-06-11 01:13:10 UTC) #3
eroman
The CQ bit was checked by eroman@chromium.org
6 years, 6 months ago (2014-06-11 21:57:23 UTC) #4
commit-bot: I haz the power
CQ is trying da patch. Follow status at https://chromium-status.appspot.com/cq/eroman@chromium.org/329673002/1
6 years, 6 months ago (2014-06-11 21:58:36 UTC) #5
commit-bot: I haz the power
FYI, CQ is re-trying this CL (attempt #1). The failing builders are: mac_chromium_compile_dbg on tryserver.chromium ...
6 years, 6 months ago (2014-06-11 23:20:37 UTC) #6
commit-bot: I haz the power
The CQ bit was unchecked by commit-bot@chromium.org
6 years, 6 months ago (2014-06-11 23:23:09 UTC) #7
commit-bot: I haz the power
Try jobs failed on following builders: mac_chromium_rel on tryserver.chromium (http://build.chromium.org/p/tryserver.chromium/builders/mac_chromium_rel/builds/38144)
6 years, 6 months ago (2014-06-11 23:23:10 UTC) #8
eroman
The CQ bit was checked by eroman@chromium.org
6 years, 6 months ago (2014-06-12 00:02:41 UTC) #9
commit-bot: I haz the power
CQ is trying da patch. Follow status at https://chromium-status.appspot.com/cq/eroman@chromium.org/329673002/1
6 years, 6 months ago (2014-06-12 00:04:16 UTC) #10
commit-bot: I haz the power
FYI, CQ is re-trying this CL (attempt #1). The failing builders are: mac_chromium_compile_dbg on tryserver.chromium ...
6 years, 6 months ago (2014-06-12 00:42:41 UTC) #11
commit-bot: I haz the power
The CQ bit was unchecked by commit-bot@chromium.org
6 years, 6 months ago (2014-06-12 00:44:07 UTC) #12
commit-bot: I haz the power
Try jobs failed on following builders: mac_gpu on tryserver.chromium.gpu (http://build.chromium.org/p/tryserver.chromium.gpu/builders/mac_gpu/builds/15826)
6 years, 6 months ago (2014-06-12 00:44:08 UTC) #13
eroman
The CQ bit was checked by eroman@chromium.org
6 years, 6 months ago (2014-06-12 00:56:35 UTC) #14
commit-bot: I haz the power
CQ is trying da patch. Follow status at https://chromium-status.appspot.com/cq/eroman@chromium.org/329673002/1
6 years, 6 months ago (2014-06-12 00:57:23 UTC) #15
commit-bot: I haz the power
6 years, 6 months ago (2014-06-12 13:21:52 UTC) #16
Message was sent while issue was closed. 
Change committed as 276658

Powered by Google App Engine
This is Rietveld 408576698