]> Cypherpunks repositories - gostls13.git/commitdiff
projects / gostls13.git / commitdiff
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 547aed1)
crypto/rsa: use BoringCrypto for 4096 bit keys
authorFilippo Valsorda <filippo@golang.org>
Wed, 8 Mar 2023 16:35:30 +0000 (17:35 +0100)
committerFilippo Valsorda <filippo@golang.org>
Wed, 17 May 2023 11:57:35 +0000 (11:57 +0000)
Fixes #58803

Change-Id: I097938ff61dae2b65214f8d0126d68de63525f5b
Reviewed-on: https://go-review.googlesource.com/c/go/+/474515
Run-TryBot: Filippo Valsorda <filippo@golang.org>
TryBot-Result: Gopher Robot <gobot@golang.org>
Reviewed-by: Dmitri Shuralyov <dmitshur@google.com>
Reviewed-by: Roland Shoemaker <roland@golang.org>
src/crypto/rsa/rsa.go patch | blob | history

diff --git a/src/crypto/rsa/rsa.go b/src/crypto/rsa/rsa.go
index adb76b6ce5c70a2904fe759db192933d2ac2460d..64a27660dcadaeefff6821cb0c87db37788ebb71 100644 (file)
--- a/src/crypto/rsa/rsa.go
+++ b/src/crypto/rsa/rsa.go
@@ -286,7 +286,8 @@ func GenerateKey(random io.Reader, bits int) (*PrivateKey, error) {
 func GenerateMultiPrimeKey(random io.Reader, nprimes int, bits int) (*PrivateKey, error) {
        randutil.MaybeReadByte(random)
 
-       if boring.Enabled && random == boring.RandReader && nprimes == 2 && (bits == 2048 || bits == 3072) {
+       if boring.Enabled && random == boring.RandReader && nprimes == 2 &&
+               (bits == 2048 || bits == 3072 || bits == 4096) {
                bN, bE, bD, bP, bQ, bDp, bDq, bQinv, err := boring.GenerateKeyRSA(bits)
                if err != nil {
                        return nil, err
Go GOST TLS 1.3